Sign Up Sign Up Log In Sign Up
This job has expired and you can't apply for it anymore. Start a new search.

Cybersecurity Analyst Tier II

Overview:

Every day at Perspecta, we enable hundreds of thousands of people to take on our nation’s most important work.  We’re a company founded on a diverse set of capabilities and skills, bound together by a single promise: we never stop solving our nation’s most complex challenges.  Our team of engineers, analysts, developers, investigators, integrators and architects work tirelessly to create innovative solutions.  We continually push ourselves—to respond, to adapt, to go further.  To look ahead to the changing landscape and develop new and innovative ways to serve our customers.

Perspecta works with U.S. government customers in defense, intelligence, civilian, health care, and state and local markets. Our high-caliber employees are rewarded in many ways—not only through competitive salaries and benefits packages, but the opportunity to create a meaningful impact in jobs and on projects that matter. 

Perspecta’s talented and robust workforce—14,000 strong—stands ready to welcome you to the team. Let’s make an impact together.

Perspecta is an AA/EEO Employer - Minorities/Women/Veterans/Disabled and other protected categories

Responsibilities:

The Tier II Cybersecurity Analyst reports directly to the SOC Manager as part of the Security Operations team within the Perspecta CISO organization.

The Senior Security Analyst will support Tier II analysis and response. Must be capable of working with a security team of varying experience levels to effectively monitor and investigate security incidents as well as make recommendations to improve the security posture of a large organization.

    • Perform network security monitoring and incident response for a large organization; coordinate with other corporate sectors to record and report incidents.
    • Respond to cybersecurity tickets.
    • Investigate and analyze software and tools for approval to be on the corporate network.
    • Monitor and analyze Security Information and Event Management (SIEM) alerts to identify security issues for remediation and investigate events and incidents.
    • Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information from security tools.
    • Implement counter-measures and/or mitigating controls.
    • Conduct investigative analysis via various security tool portals to include email and endpoint protection tools.
    • Prepare briefings and reports of analysis methodology and results.
    • Assist security analysts in building operational processes around the SIEM ecosystems
    • Develop IDS/IPS and SIEM content and rules
    • Perform analyst activities using security tools such as QRADAR SIEM (or similar), Packet Capture, Forensics, Proofpoint, IPS, firewalls, endpoint security, and FireEye
    • Assist with forensics and investigations as needed using security tools such as ProofPoint, SIEM, and EnCase
Qualifications:

Requires 5 to 8 years with BS/BA or 3 to 5 years with MS/MA.

  • Experience implementing SIEM products such as Arcsight, QRadar and/or Splunk in a complex network environment.
  • Experience investigating, interpreting, and responding to technical and/or complex IT security data.
  • Extensive experience with IT security tools, working technical knowledge of network, server, storage and desktop hardware and software
  • Prior experience successfully providing the full range of IT cyber security tasks.
  • Strong working knowledge with industry IT security tools
  • Technical certifications are a plus
  • Minimum Secret Clearance required; Top Secret desired
  • U.S. Citizen Candidate 

Desired Skills

  • Excellent analytical and problem solving skills as well as interpersonal skills to interact with end users, team members, and senior management.
  • Subject Matter Expert-level skills in Incident Response and Intrusion Monitoring.
  • Strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux and Cisco operating systems, networking protocols and network traffic analysis.
  • Desirable certifications include CISSP, GCIH, GCIA, or GCED
  • Able to work independently and complete projects with little supervision




Send me email alerts for similar jobs

JOIN US