Tier II Intrusion Analyst

As required by our governmental client, this position requires being a US Citizen AND an active DOE Q or Top Secret or Secret clearance or the ability to obtain a DOE Q or Top Secret or Secret clearance to be considered.

The candidate will be an experienced senior technical member of a Security Operations Center (SOC) working in a 24x7 operational environment. This position requires daily interaction with management, security personnel at customer sites, and government personnel with other federal agencies. Applicant must be a positive, flexible, driven, self-starter requiring no direct supervision, with the capability to exceed in a fast-paced cybersecurity industry. Strong communication and interpersonal skills are a necessity; including the ability to effectively communicate via written and verbal mediums. Strong documentation skills are a requirement, as senior analysts are responsible for standardizing operational procedure. Developed and demonstrated business and technical writing skills are a must. Tier 2 intrusion analysts must possess senior level technical ability and serve as a subject matter expert within the team. Position may include up to 10% travel both locally and nationwide. Applicants must be demonstrably detail-oriented, self-driven, and be able to multi-task on a high-tempo operational team.

Compensation & Benefits:

• Estimated Starting Salary Range for Tier II Intrusion Analyst: $70,000 to $80,000.
• Pay commensurate with experience.
• Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.

Tier II Intrusion Analyst Responsibilities Include:

• Employ computer network defense best practice by monitoring, triaging, and responding to cybersecurity alerts within a dynamic operational work environment.
• Communicate with customer contacts to effectively relay time-sensitive security event and incident information.
• Review work of junior team members and provide technical coaching and guidance. Research emerging threats and apply proactive investigative measures to predict actions by adversarial threat actors.
• Develop and maintain in-depth knowledge of industry trends, vulnerability releases, adversarial TTPs, and malware campaigns.
• Translate investigative results into threat indicators and custom behavioral signatures within intrusion prevention and detection systems.
• Continually learn and evolve as a member of a team of highly motivated cybersecurity professionals.
• Triage of alerts in support of network security monitoring operations
• Review and analyze network packet capture files.
• Review and analyze IDS/IPS alerts.
• Review of security vulnerability data
• Utilize threat hunting techniques to pro-actively identify threat activity.
• Identification, review, and tracking of malicious code.
• Reporting malicious activity to customer sites
• Provide customers with remediation recommendations.
• Review and management of incident response activity.
• Serve as Subject Matter Expert (SME) within team based on an identified area of technical expertise.
• Development of new services, technology, and products
• Creation of procedural documentation
• This position may require up to 10% travel.
• Performs other job-related duties as assigned.

Tier II Intrusion Analyst Experience, Education, Skills, Abilities requested:

• Bachelor's Degree in Computer Science, Information Systems, Information Security or related technical discipline OR four (4) years professional IT experience may be used in lieu of degree.
• Five (5) years of working experience with a preference in network security monitoring.
• Active Department of Energy (DOE) "Q" Clearance OR Top Secret Security Clearance OR Secret Clearance OR ability to obtain a clearance
• US Citizenship required (no dual citizenship)
• Must be willing to work various 12 hour shifts in a 24x7 environment
• Strong knowledge of network and host-based IDS/IPS
• Strong knowledge of SIEM technologies
• Strong knowledge of Anti-Malware or EDR technologies
• Strong knowledge of networking
• Strong knowledge of common network protocol
• Strong knowledge of information security principles
• Strong problem solving and troubleshooting skills.
• Excellent verbal and written communication skills
• Excellent customer service skills
• Possess DoDi approved baseline certifications for IAT Level II and CSSP Analyst, or obtain within the 6 months of employment.
• Experience with SOAR solutions preferred.
• Experience in supervisory or management of IT operations preferred.
• Experience with cybersecurity information assurance and compliance preferred.
• Experience with advanced query, regular expression, scripting, or programming languages preferred.
• The following security certifications are highly desired: GSEC, GCIA, GCIH, Pentest+, CHFI, OSCP
• Must pass pre-employment qualifications of Cherokee Federal

Company Information:

Criterion is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about Criterion, visit cherokee-federal.com.

#CherokeeFederal #LI

Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.

Similar searchable job titles:

• Senior Security Analyst
• Incident Response Analyst
• Security Operations Center (SOC) Analyst II
• Cyber Threat Analyst
• Security Incident Handler

Keywords:

• Intrusion Analysis
• Incident Handling
• Security Monitoring
• Advanced Threat Detection
• Forensic Analysis

Legal Disclaimer: Cherokee Federal is an equal opportunity employer. Please visit cherokee-federal.com/careers for information regarding our Affirmative Action and Equal Opportunity Employer Statement, and Accommodation request.

Many of our job openings require access to government buildings or military installations. Candidates must pass pre-employment qualifications of Cherokee Federal.

Please Note: This position is pending a contract award. If you are interested in a future with Cherokee Federal, APPLY TODAY! Although this is not an approved position, we are accepting applications for this future and anticipated need.