Senior Cyber Security Operations Analyst (Assistant Team Lead)

Bethesda, Maryland 20817

Post Date: 01/15/2018 Job ID: 17502 Industry: Technology

Senior Cyber Security Operations Analyst  (Assistant Team Lead)

Looking for a Senior Cyber Security Operations Analyst whose secondary duties are to serve as an Assistant Team Lead and on a Security Operations team on a contract with a federal government client with an important mission. 


  • Support/assist the contract lead of a combined team of 11 people with tier 1 through tier 3 SOC roles and services, including:
    • Realtime monitoring and triage
    • Cyber intelligence
    • Incident analysis, response, and coordination
    • Hunting
    • Network, host, and malware analysis
    • Sensor tuning
    • Custom signature creation
  • With the contract lead:
    • Lead the application of cyber intelligence to improve security operations
    • Oversee and perform investigation of network and hosts/endpoints for malicious activity, to include analysis of packet captures
    • Oversee and assist in efforts to detect, confirm, contain, remediate, and recover from attacks
    • Prepare executive summaries and conduct briefings on significant investigations
    • Measure and manage individual and team performance
    • Ensure adequate metrics and documentation of team operations for leadership and other constituents
    • Hire, develop, retain staff

Qualifications / Requirements

  • Credentials
    • BS/BA degree
    • Five or more years of work experience
    • Three or more years of cyber security work experience
  • Sound cyber security knowledge foundation, to include understanding of
    • Adversary TTPs
    • Network technology and common protocols
    • Network security
    • Host security
    • Malware
    • Security tools and sensors
  • Experience, Skills and Abilities
    • High technical ability/aptitude, demonstrated through prior technical experience and accomplishment
    • Network investigation experience, to include netflow and packet/protocol capture and analysis
    • Endpoint/host forensics experience
    • SIEM experience
    • Strong critical thinking, problem solving, and organization skills
    • Strong teamwork and collaboration skills
    • Good written and verbal communication skills
    • Ability to pass a security clearance background investigation


Preferred Qualifications:

  • Prior leadership experience with direct reports in a cyber environment
  • Security clearance
  • One or more certifications in information security (such as GCIA, GCIH, CEH, CISSP, SSCP, Sec+, etc)
  • Experience and effective participation in hunt, computer network defense, real-time analysis and incident response activities, to include ability to reconstruct events from network, endpoint, and log data
  • Experience and understanding of host-based/endpoint protection systems
  • Cyber intelligence experience
  • Disk forensics experience
  • Memory forensics experience
  • Programming experience
  • Scripting experience
  • Server administration experience
  • Enterprise forensic tool(s) experience
  • Federal contract experience

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: