Hybrid Security Operations Center (SOC) Analyst bei Gunnison Consulting Group, Inc.

Description

Salary: $65,000 - $72,000/year

Work Location: Fully on-site during training period. Hybrid 3 days on-site, 1 day remote after training period.

Gunnison is looking for a SOC Analyst to support our HHS CSIRC team in Atlanta, GA.

• Collect, analyze, and correlate security events and use discovered data to enable recommendation of mitigation of potential incidents within the enterprise as defined by Computer Security Incident Response Center (CSIRC) methodology.
• Identify events that pose a threat to the confidentiality, availability and integrity of information or systems that may be indicative of a violation of federal law or HHS Policy.
• Perform incident triage to include determining accuracy, scope, urgency, and impact.
• Provide incident coordination and updates to the OpDiv Incident Response Teams (IRTs) and HHS through prescribed CSIRC methodology.
• Notify CSIRC management and other HHS IRT members of suspected incidents and articulate the event's history, status, and potential impact.
• Perform agency-wide event and incident tracking using ticket management system.
• Track and report on-going cyber security incidents to the primary incident handler.
• Respond to verified incidents utilizing a wide array of tools to mitigate active threats.

Requirements

• Two or more years of experience performing SOC Analyst duties.
• Experience using investigative software such as SPLUNK and Net Witness.
• Industry standard cybersecurity certification, e.g. Security+.
• Core security concepts: Security+ covers essential topics like risk management, threat analysis, vulnerability assessment, and incident response. These are all critical skills for SOC analysts.
• Network security: A strong understanding of networking is crucial for SOC analysts, and Security+ provides a solid foundation in network security principles.
• Compliance and governance: This certification also covers compliance and governance frameworks, which are essential for understanding organizational security posture.
• Bachelor's degree in computer science, Information Systems, Engineering or related field, or equivalent experience (+2 years).