phia, LLC · 11 hours ago
Cyber Operations Analyst – SOC Threat Management (Swing Shift)
United States
Full-time
Remote
Mid Level
3+ years expphia, LLC is a Northern Virginia based small business focused on Cyber Intelligence and Cyber Security. They are hiring a Cyber Operations Analyst to support a Federal agency Cyber Security Operations Center, focusing on advanced cyber threat monitoring and incident analysis while leveraging AI/ML for enhanced SOC efficiency.
Cyber SecurityInformation TechnologySmall and Medium Businesses
No H1B
U.S. Citizen Only
Responsibilities
Support 24x7 monitoring, detection, and management of advanced cyber threats
Perform deep-dive incident analysis by correlating data from multiple sources to determine impact on critical systems or datasets
Execute operational processes in support of response efforts to identified security incidents
Analyze network traffic to identify exploit or intrusion attempts, and recommend, implement, and tune detection mechanisms
Provide subject matter expertise on network-based attacks, intrusion methodologies, and threat management
Escalate complex incidents for further investigation and collaborate with other Threat Management team members
Utilize AI/ML-based tools to detect anomalies, automate triage, and improve threat intelligence
Conduct threat intelligence analysis to assess risk and adapt defenses using ML-enhanced tools
Manage email security using ProofPoint and respond promptly to threats
Configure and optimize Splunk for log analysis, alerting, and incident investigation
Deploy and monitor SentinelOne agents, FirePower detection rules and configurations, and enforce robust security measures
Monitor and respond to alerts across platforms including Microsoft Defender XDR, Defender for Endpoint, Defender for Office 365, Azure Entra ID, and Google Cloud SCC
Tune security policies, maintain visibility into cloud and endpoint environments, and support continuous improvement of security posture
Identify and implement automation use cases leveraging AI/ML and SOAR capabilities
Stay current on cybersecurity trends, threat actors, and AI/ML advancements relevant to SOC operations
Qualification
Required
Experienced in cyber/IT security with at least 3+ years in cybersecurity/SOC analysis and operations
Familiarity with Artificial Intelligence / Machine Learning (AI/ML) capabilities, and their application to cyber analysis and SOC operations
Skilled in network traffic analysis and threat detection methodologies
Strong understanding of Boolean logic, TCP/IP fundamentals, network-level exploits, and IDS/IPS technologies
Familiar with control frameworks, risk management techniques, and cloud security (AWS, Azure, GCP)
Hands-on experience with cybersecurity automation and SOAR platforms
Proficient in using ML frameworks for anomaly detection, threat intelligence, and behavioral analysis
Excellent communication, organizational, and interpersonal skills
BA/BS in Computer Science, IT, or related field (or equivalent experience)
3+ years of direct experience in cybersecurity and SOC analysis & operations
U.S. Citizenship required
Ability to obtain Public Trust clearance
Preferred
Experience with Splunk, ProofPoint, Cisco FirePower, SentinelOne, and Microsoft Defender suite
Expertise with IDS/IPS architectures, signature creation, and anomaly-based detection
Strong data analysis and feature engineering skills for ML-based security models
Direct experience with AI/ML applications in SOC environments, including automated threat detection and predictive analytics
Benefits
Medical Insurance
Dental Insurance
Vision Insurance
Life Insurance
Short Term & Long Term Disability
401k Retirement Savings Plan with Company Match
Paid Holidays
Paid Time Off (PTO)
Tuition and Professional Development Assistance
Company
phia, LLC
phia LLC is a Northern Virginia based small business that was established in 2011.
11-50 employees
Funding
Current Stage
Early StageRecent News
2022-09-16
Company data provided by crunchbase