C
CSOC Tier 2 Analyst
Salary undisclosed
Apply on
Original
Simplified
CSOC Tier 2 Analyst
**Immediate Requirement**
**Onsite**
CSEngineering is looking to add a CSOC Tier 2 Analyst to our growing team! As the Cyber Security Operations Center (CSOC) Tier 2 Team Lead, you are responsible for overseeing and managing the activities of the Tier 2 Team in our client's Security Operations Center. Your role involves leading a team of security analysts and engineers who monitor, detect, analyze, and respond to security incidents and threats in an organization's IT environment at the Tier 2 Level. You play a critical role in analyzing and resolving cyber threats or escalating incidents for Tier 3 response as necessary. Leadership skills, technical expertise, and a deep understanding of cybersecurity concepts are essential for success in this role.
JOB RESPONSIBILITIES
Respond promptly and effectively to security incidents and threats discovered by CSOC Analyst Level I and carry out effective Level II analysis of incidents.
Remediation of incidents and escalation when necessary to Tier 3 support
Initial assessment of the scope of the attack and affected systems
Accurately document cases during investigations and effectively communicate findings to Level I Analyst or escalation team to ensure complete handover of work streams.
Continuously improve incident management processes through periodic threat hunting exercises, knowledge optimization effort building, and by comprehensive diagnosis and analysis of incident trends.
Follow the issue tracking, escalation policies and work effectively across all CSOC tiers as the technical competence requires.
Dedicated monitoring and analysis of cyber security events by use of SOC tools
Incident Response generation and reporting IAW established procedures.
Provide Level II technical support in CSOC operations and activities.
Provide daily/weekly updates on CSOC operations and developments.
Conduct Forensic analysis and respond to data call activities.
Generate quality technical reports containing methodologies, findings, and recommendations.
Work with external stakeholders to understand operational needs and develop effective processes.
Maintain a current understanding of industry trends, emerging cyber threats, and new solutions which may impact CSOC activities.
Collaborate with CSOC SME to ensure optimal performance using CSOC technology.
Identify, reverse engineering and de-obfuscating digital content related to an incident.
REQUIRED CERTIFICATIONS AND QUALIFICATIONS
Bachelors in information technology, Computer Science, or a related field; or relevant, commensurate work experience.
5+ years of experience within a Level Tier 2 cybersecurity environment; experience in a leadership role is preferred.
Robust Certification Portfolio including Security+, Network+, CEH, Azure or Cloud Certification, and Splunk Core Certified Power User.
Ability to work a day or night shift rotational schedule.
Vulnerability/cyber incident management framework.
Experience with advanced technologies such as: Splunk SaaS, Splunk Enterprise Security, Splunk SaaS UBA, Crowdstrike, Tenable, Forescout, zScaler, Bigfix, MaaS-360 (IBM MaaS-360), and Encase for forensic investigations, Fireeye, Cortex XSOAR, Cortex XDR, and Prisma-Access.
Prior HHS experience a plus.
Location: Parklawn Drive, Rockville MD (Onsite)
COMPANY OVERVIEW
Who we are- CSEngineering, a Service-Disabled Veteran-owned small business established in 2002, is dedicated to becoming the premier engineering and services firm in our industry, all while prioritizing client satisfaction above all else.
What we do- With a rich history of excellence, we boast significant expertise in a wide array of areas, including satellite systems, weapons and missile systems, naval architecture, aviation systems, IT and Enterprise Architecture, and more. We offer a comprehensive range of services, including logistics, program management, and IT operations. As a recipient of the Hire Vets Gold Medallion award, we're proud of our commitment to veteran hiring, retention, and professional development.
Why should you be a part of CSE- At CSEngineering, our employees are at the heart of everything we do. We foster a culture of passion and growth, where individuals are encouraged to excel build fulfilling careers, and continually strive for excellence. Our dedication to innovation and excellence propels us forward, as we continuously strive to set new standards in our industry. Join us and be part of a team that's redefining what's possible.
CSE offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.
CSE is an equal opportunity employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity and veteran status. #dice
**Immediate Requirement**
**Onsite**
CSEngineering is looking to add a CSOC Tier 2 Analyst to our growing team! As the Cyber Security Operations Center (CSOC) Tier 2 Team Lead, you are responsible for overseeing and managing the activities of the Tier 2 Team in our client's Security Operations Center. Your role involves leading a team of security analysts and engineers who monitor, detect, analyze, and respond to security incidents and threats in an organization's IT environment at the Tier 2 Level. You play a critical role in analyzing and resolving cyber threats or escalating incidents for Tier 3 response as necessary. Leadership skills, technical expertise, and a deep understanding of cybersecurity concepts are essential for success in this role.
JOB RESPONSIBILITIES
Respond promptly and effectively to security incidents and threats discovered by CSOC Analyst Level I and carry out effective Level II analysis of incidents.
Remediation of incidents and escalation when necessary to Tier 3 support
Initial assessment of the scope of the attack and affected systems
Accurately document cases during investigations and effectively communicate findings to Level I Analyst or escalation team to ensure complete handover of work streams.
Continuously improve incident management processes through periodic threat hunting exercises, knowledge optimization effort building, and by comprehensive diagnosis and analysis of incident trends.
Follow the issue tracking, escalation policies and work effectively across all CSOC tiers as the technical competence requires.
Dedicated monitoring and analysis of cyber security events by use of SOC tools
Incident Response generation and reporting IAW established procedures.
Provide Level II technical support in CSOC operations and activities.
Provide daily/weekly updates on CSOC operations and developments.
Conduct Forensic analysis and respond to data call activities.
Generate quality technical reports containing methodologies, findings, and recommendations.
Work with external stakeholders to understand operational needs and develop effective processes.
Maintain a current understanding of industry trends, emerging cyber threats, and new solutions which may impact CSOC activities.
Collaborate with CSOC SME to ensure optimal performance using CSOC technology.
Identify, reverse engineering and de-obfuscating digital content related to an incident.
REQUIRED CERTIFICATIONS AND QUALIFICATIONS
Bachelors in information technology, Computer Science, or a related field; or relevant, commensurate work experience.
5+ years of experience within a Level Tier 2 cybersecurity environment; experience in a leadership role is preferred.
Robust Certification Portfolio including Security+, Network+, CEH, Azure or Cloud Certification, and Splunk Core Certified Power User.
Ability to work a day or night shift rotational schedule.
Vulnerability/cyber incident management framework.
Experience with advanced technologies such as: Splunk SaaS, Splunk Enterprise Security, Splunk SaaS UBA, Crowdstrike, Tenable, Forescout, zScaler, Bigfix, MaaS-360 (IBM MaaS-360), and Encase for forensic investigations, Fireeye, Cortex XSOAR, Cortex XDR, and Prisma-Access.
Prior HHS experience a plus.
Location: Parklawn Drive, Rockville MD (Onsite)
COMPANY OVERVIEW
Who we are- CSEngineering, a Service-Disabled Veteran-owned small business established in 2002, is dedicated to becoming the premier engineering and services firm in our industry, all while prioritizing client satisfaction above all else.
What we do- With a rich history of excellence, we boast significant expertise in a wide array of areas, including satellite systems, weapons and missile systems, naval architecture, aviation systems, IT and Enterprise Architecture, and more. We offer a comprehensive range of services, including logistics, program management, and IT operations. As a recipient of the Hire Vets Gold Medallion award, we're proud of our commitment to veteran hiring, retention, and professional development.
Why should you be a part of CSE- At CSEngineering, our employees are at the heart of everything we do. We foster a culture of passion and growth, where individuals are encouraged to excel build fulfilling careers, and continually strive for excellence. Our dedication to innovation and excellence propels us forward, as we continuously strive to set new standards in our industry. Join us and be part of a team that's redefining what's possible.
CSE offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.
CSE is an equal opportunity employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity and veteran status. #dice
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job Similar Jobs