Position Summary:
The SOC Analyst is responsible for analyzing and responding to cyber threats. The SOC Analyst will operate and tune security tools to perform cyber security services for client networks. Key Responsibilities and Duties:
- Work and complete assigned tickets according to SOPs
- Monitor client environments for security threats
- Perform regularly scheduled vulnerability scanning and penetration testing and manage remediation of identified issues
- Analyze servers, workstations and other devices suspected to be compromised
- Perform root cause analysis for cybersecurity incidents
- Provide high quality written and verbal customer service
- Accurately track and document all work
- Perform technical support services in line with the technicalskill requirements
- Travel to client sites to perform support when necessary
Job Qualifications:Core Competencies
- Timeliness – Meets deadlines - Completes work in a timely manner.
- Reliability –Achieves commitments - Arrives to work and meetings when scheduled/expected.
- Attitude–Has a positive attitude about performing their job.
- Organization–Manages their own work and schedule
- Accountability –Takes responsibility for actions and resolves own mistakes
- Receptive – open to feedback and willing to grow and improve
- Adaptable –flexible and open to change
- Integrity –High work ethic and integrity
- Follow through –Ensures work completion
- Quality – complete all work with a high level of detail and accuracy
- Professionalism –Conduct oneself in an all-round professional manner
- Communication – Communicate effectively
- Team – Available and supportive of coworkers
Abilities
- Demonstrates technical knowledge and abilities in line with role
- Prioritize and manage workload
- Notify the CISO when unable to complete workload
- Identify when an assignment should be escalated
- Create detailed documentation and ticket notes
- Provide high quality customer service
- Travel to client sites when needed
- Monitor customer environments for security threats
- Investigate security breaches and other cyber security incidents, including account compromise, social engineering & malware events
- Respond to detected threats using appropriate scripts, policies and other actions as necessary
- Provide accurate and timely information regarding detected threats to the designated customer point of contact
- Perform regularly scheduled vulnerability scanning and penetration testing and manage remediation of identified issues
- Analyze servers, workstations and other devices suspected to be compromised and accurately assess the scope and type of issue
- Perform root cause analysis for cybersecurity incidents to support recommendations made to further improve client security posture
Security Responsibilities
- Complete training for and maintain awareness of cybersecurity risks including insider threat, and appropriate handling of CUI and other regulated data.
- Treat client data and OSIbeyond data as sensitive, and do not disclose, release or otherwise transfer it outside of OSIbeyond or client environments without written permission.
- Follow cybersecurity requirements as described in the Employee Handbook and other OSI policies.
- Immediately follow incident response procedures when a security incident or concern is noticed.
- Assist with the escorting or monitoring of visitors.
- Monitors alerts (from SIEM)
- Conduct vulnerability scans
- Review and/or update logged events
Education and Certifications:
Certifications
Position:
- Location – Rockville, MD – Hybrid eligible, not to exceed 1-day WFH per week
- Department – Security
- Employment Type - Full-Time (After training period of 2-3 months (9a-5p EST M-F) this position will be shifted to rotating schedule consisting of 12hr shifts 6a-6p EST.)
- Compensation - $55,000-60,000k
- Travel -Some travel required, vehicle required
