Remote Mid SOC Analyst

Summary

Join Agile Defense as a talented and ambitious self-starting Mid SOC Analyst to embed themselves into the next generation of operational environments across the US government.

Requirements

• An industry technical certification such as GCIH, MS-SC200 or equivalent
• Bachelor's degree in Computer Science, or related field
• 3+ years of experience in incident response with 1-2 years of experience in network defense environments preferred

Responsibilities

• Investigate security events using various customer and industry tools to identify potential incidents and perform actions to contain incidents in progress
• Monitor and analyze logs and alerts from a variety of different systems and tools across multiple platforms in order to respond and report suspected or actual security breaches
• Develop procedures for use, interpretation, and response to the monitoring and alert information collected
• Monitor security systems and events to detect and investigate threats, identify and analyze traffic trends, assess the impact of security alerts and traffic anomalies on the customer's network in order to make appropriate recommendations
• Support daily and hourly monitoring of incident reporting email boxes
• Support IR team activities in response to security incidents. Activities include but to limited to ensuring completion of the incident from detection thru closure, participating in IR meetings and sharing analysis with other branch/division stakeholders, providing situational awareness information to appropriate stakeholders, correlating multiple alerts and incidents to determine widespread attacks, and providing incident status reports to team management and other stakeholders/leadership

Benefits

Remote work