WashingtonRecruiter
the smart solution for Washington DC jobs

Security Operations

Company: J2K Recruiting
Location: Washington
Posted on: April 17, 2018

Job Description:

Washington, DCPosition Description:The Tier 1 Security Operations Center Analyst will possess experience with network, endpoint, threat intelligence, forensics and malware reverse engineering, as well as the functioning of specific applications or underlying IT infrastructure; has analyzed phishing emails including email headers, malware, source code, acts as a first responder to account/system attacks and compromises to determine threat vectors and provide initial remediation; uses SIEM to monitor/analyze incidents, and works with stakeholders to resolve incidents; escalates incidents when necessary using policies and procedures, closely involved in developing, tuning and implementing threat detection analytics.Responsibilities:

  • Act as network incident first responder for a 24/7 staffed SOC, reviewing and verifying system alerts
  • Assist with the development of incident response plans, workflows, and SOPs
  • Maintain security sensors and tools
  • Monitor security sensors and review logs to identify intrusions
  • Escalate security incidents using established policies and procedures
  • Uses tools and techniques to perform initial extraction, de-obfuscation, or other manipulation of malware related data
  • Perform initial analysis of security events, network traffic, and logs to engineer new detection methods, or create efficiencies when available
  • Work directly with cyber threat intelligence analysts to convert intelligence into useful detection
  • Collaborate with incident response team to rapidly build detection rules as needed
  • Identify incident root cause and take proactive mitigation steps
  • Perform lessons learned activities
  • Review vulnerabilities and track resolution
  • Review and process threat intel reports
  • Implement detection use cases
  • Implement IDS signatures
  • Assist with incident response efforts
  • Provide critical information for customer report briefs
  • Participate in customer security assessments
  • Participate in table top exercisesJob Requirements:
    • Basic, yet experienced understanding of root causes of malware infections and proactive mitigation
    • Basic, yet experienced understanding of lateral movement and footholds
    • Basic, yet experienced understanding of data exfiltration techniques. Demonstrated ability in critical thinking, problem solving, and analytics
    • Enjoy analyzing patterns looking for outliers
    • Enjoy creating ways to find needles in haystacks
    • Have real world experience analyzing complex attacks and understand TTPs of threat actors
    • Define relationships between seemingly unrelated events through deductive reasoning
    • Basic, yet experienced in network/host based intrusion analysis, malware analysis, forensics, and cyber threat intel
    • Basic, yet experienced knowledge of advanced threat actors and complex attacks
    • Possess excellent writing skills and the ability to communicate to teammates as well as technical and executive level staff
    • Quick study with new tools
    • Basic, yet experienced knowledge of SplunkRequired/Desired Skills:
      • Basic, yet experienced knowledge of network routing and switching fundamentals to include knowledge of Multiprotocol Layer Switching (MPLS)
      • Basic, yet experienced technical understanding of operating systems, network architecture and design, Active Directory (AD) application log consumables, systems design as well as superior knowledge of technical operations process and procedures
      • Basic, yet experienced knowledge of encryption, key management and cryptology
      • Familiarity with the Risk Management Framework (NIST 800-37), Security Controls as described in NIST 800- 35, and the Federal Information Security Modernization Act (FISMA) operating standards and applicable guidelines
      • Basic, yet experienced in performing threat modelling, risk analysis, root cause analysis, risk identification, and risk mitigation
      • Basic, yet experience with planning and implementing secure networking practices such as: application segmentation, network segmentation, NAC and other access control testing/validation, updating access control SOPs
      • Understanding of configurations and experience with an enterprise SIEM solution including signature tuning, development of correlation rules, reports, and alarms
      • Familiarity with a variety of web application protocols, web services (components including JavaScript, XML, JSON), scripting capabilities (Power shell, Python) software development frameworks, operating systems, and networking technologies. Basic, yet experienced understanding of various web application frameworks such as ASP.NET, J2EE PI101992237

        Keywords: J2K Recruiting, Washington DC, Security Operations, Other, Washington, DC

        Click here to apply!

        Didn't find what you're looking for? Search again!


        I'm looking for
        in category
        within


Other Other Jobs


Interviewing for Full-time or Part-time work from home opportunity
Description: Now Interviewing individuals who are looking to work from home. If you are serious about working from home,Creating your own schedule, Spending more time with your kids,
Company: AmeriPlan
Location: Alexandria
Posted on: 04/19/2018

Independent Reps - PT/FT
Description: Our company is seeking outgoing, energetic people who have a passion for helping others
Company: Ameriplan
Location: Rockville
Posted on: 04/19/2018

Part Time Training Specialist Apply Now
Description: PT Training Specialist responsible for full cycle recruiting, interviewing, and mentoring/training
Company: AmeriPlan USA Health and Dental
Location: Cheltenham
Posted on: 04/20/2018


Independent Reps Needed_ PT/FT
Description: Looking for coachable, focused, driven people willing and ready to work independently as Benefit Consultant
Company: Ameriplan/RewardGoodWorks
Location: Columbia
Posted on: 04/20/2018

Part Time Chiropractor needed in Rockville, MD
Description: This clinic is looking for a DC who is hard working with an all-around great personality.
Company: MMA Chiropractors
Location: Arlington
Posted on: 04/19/2018

Bilingual Door-to-Door Research Interviewer - Washington, DC
Description: Job DescriptionWho is Nielsen We are known for our work in TV and Radio Ratings. Founded in 1923, Nielsen is the global authority on the consumer. We study consumers in more than 10 countries to give (more...)
Company: Nielsen
Location: Washington
Posted on: 04/19/2018

BILINGUAL CUSTOMER CARE - HURRICANE RELIEF
Description: We have immediate openings for bilingual Customer Service Representatives to assist the thousands of Americans affected by the devastation of recent hurricanes and in need of emergency assistance, housing (more...)
Company: Mommy Jobs Online
Location: Rockville
Posted on: 04/19/2018

Benefits Reps (telecommute)
Description: We are currently interviewing people to work
Company: Ameriplan
Location: Brentwood
Posted on: 04/20/2018

Esthetician For Elizabeth Arden Red Door Events
Description: Elizabeth Arden is looking for a freelance licensed esthetician to perform micro-derms, oxygen facials,
Company: Elizabeth Arden
Location: Arlington
Posted on: 04/20/2018

Telecommute-FT/PT
Description: This is a strong company that has been in business since
Company: TQS
Location: Bryans Road
Posted on: 04/19/2018

Log In or Create An Account

Username:
Password:
 

Forgot password?


Find us on Facebook

Find us on LinkedIn