Skip to content
Cybersecurity Operations Center Analyst
| Company | Booz Allen |
|---|
| Location | Fort Belvoir, VA, USA |
|---|
| Salary | $99000 – $225000 |
|---|
| Type | Full-Time |
|---|
| Degrees | Bachelor’s |
|---|
| Experience Level | Mid Level, Senior |
|---|
Requirements
- 3+ years of experience working in a Security Operations Center at a classified level within the DoD
- Experience providing continuous monitoring security expertise to business units and key stakeholders
- Experience performing extensive analysis to validate established security requirements and recommend additional security requirements and safeguards
- Experience working with cybersecurity staff to evolve the Security Operations continuous monitoring toolsets and reporting to provide better vulnerability insight
- Ability to serve as subject matter expert on vulnerabilities, including system and application settings, and work alongside other security analysts in event handling and incident response
- Ability to perform as a focal point for incident response and be responsible for communicating with other stakeholders
- Active TS/SCI clearance; willingness to take a polygraph exam
- Bachelor’s degree
- CSSP Certification, including CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, or PenTest+ Certification
Responsibilities
- Improve tier monitoring strategies and analyze threats, using state-of-the-art tools and platforms
- Work with the team to comprehend, mitigate, and respond to threats quickly, restoring operations and limiting the impact
- Manage efforts to figure out just how many systems are affected and assist recovery efforts
- Combine threat intelligence, event data, and assessments of events to identify patterns to understand attackers’ goals to stop them from succeeding
- Lead a team of professionals as they use cyberspace capabilities to evaluate potential weaknesses as well as the effectiveness of mitigations for cybersecurity solutions
- Leverage cyberspace operations systems to aggregate threat feeds that inform briefings for senior leadership aligned to our Army client
Preferred Qualifications
- Experience using Elastic for monitoring and analysis
- Experience using endpoint tools to successfully hunt for adversarial behavior
- Knowledge of Splunk and creating Splunk content, including alerts and dashboards
- Ability to conduct threat hunting using network and host-based information
- TS/SCI clearance with a polygraph
- Splunk, Tanium, or TYCHON Certification
- 8570 CSSP Analyst or Incident Responder Certification
