This job has closed.

General Dynamics Information Technology · 1 week ago

Security Operation Center (SOC) Analyst

USA OR Portland

Full-time

Hybrid

Mid Level

$74K/yr - $100K/yr

3+ years exp

General Dynamics Information Technology is a global technology and professional services company that delivers consulting, technology, and mission services to every major agency across the U.S. government. The SOC Analyst will be responsible for researching threat intelligence, providing analysis, and ensuring real-time cyber-security monitoring of government systems to protect against potential threats.

Artificial Intelligence (AI)Cloud ComputingConsultingCyber SecurityInformation Technology

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Must have strong analytical and technical skills in computer network defense operations, ability to lead efforts in Incident Handling (Detection, Analysis, Triage), Hunting (anomalous pattern detection and content management) and Malware Analysis

Experience and ability to with analyzing information technology security events to discern events that qualify as legitimate security incidents as opposed to non-incidents. This includes security event triage, incident investigation, implementing countermeasures, and conducting incident response

Must be knowledgeable and have hands-on experience with a Security Information and Event Monitoring (SIEM) platforms and/or log management systems that perform log collection, analysis, correlation, and alerting

Strong logical/critical thinking abilities, especially analyzing security events (windows event logs, network traffic, IDS events for malicious intent)

Excellent organizational and attention to details in tracking activities within various Security Operation workflows

A working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.) commonly deployed in enterprise networks, a conceptual understanding of Windows Active Directory is also required, and a working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.)

Experience with the identification and implementation of counter-measures or mitigating controls for deployment and implementation in the enterprise network environment

Experience with one or more of the following technologies Network Threat Hunting, Big Data Analytics, Endpoint Threat Detection and Response, SIEM, workflow and ticketing, and Intrusion Detection System

Knowledge of NIST SP 800-53 Rev. 5, 800-37, 800-171, FedRAMP, FISMA, and NIST AI RMF standards

Qualification

Cyber DefenseIncident HandlingThreat DetectionLog ManagementAnalytical SkillsAttention to DetailOrganizational SkillsCritical ThinkingTeam CollaborationCommunication Skills

Required

Secret clearance level must currently possess

Top Secret clearance level must be able to obtain

Other Public Trust/Other required

3 + years of related experience

US Citizenship Required

Cyber Defense

Incident Handling

Log Management

Threat Detection

Strong analytical and technical skills in computer network defense operations

Ability to lead efforts in Incident Handling (Detection, Analysis, Triage), Hunting (anomalous pattern detection and content management) and Malware Analysis

Experience and ability to analyze information technology security events to discern events that qualify as legitimate security incidents

Knowledgeable and have hands-on experience with a Security Information and Event Monitoring (SIEM) platforms and/or log management systems

Strong logical/critical thinking abilities, especially analyzing security events

Excellent organizational and attention to details in tracking activities within various Security Operation workflows

A working knowledge of the various operating systems (e.g. Windows, OS X, Linux, etc.)

Conceptual understanding of Windows Active Directory

Working knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.)

Experience with the identification and implementation of counter-measures or mitigating controls for deployment and implementation in the enterprise network environment

Experience with one or more of the following technologies: Network Threat Hunting, Big Data Analytics, Endpoint Threat Detection and Response, SIEM, workflow and ticketing, and Intrusion Detection System

Knowledge of NIST SP 800-53 Rev. 5, 800-37, 800-171, FedRAMP, FISMA, and NIST AI RMF standards

Current Secret, Top Secret, DOE L, or DOE Q clearance required

US citizenship required

Preferred

CISSP a plus

2-4 years related experience

Prior performance in roles such as ISSO or ISSM

Benefits

401K with company match

Comprehensive health and wellness packages

Paid education and certifications

Paid vacation and holidays

Health Savings Accounts

Dental plan options

Vision plan

Full flex work weeks

Paid parental leave

Paid military leave

Paid bereavement leave

Paid jury duty leave

Short and long-term disability benefits

Life insurance

Accidental death and dismemberment insurance

Personal accident insurance

Critical illness insurance

Business travel and accident insurance

Company

General Dynamics Information Technology

Glassdoor3.9

General Dynamics Information Technology is an IT consulting company that specializes in cyber security, AI, and quantum computing. It is a sub-organization of General Dynamics.

Founded in 1999

Falls Church, Virginia, USA

10001+ employees