SkyePoint Decisions, Inc. ยท 2 days ago
Cyber Security Analyst
Wonder how qualified you are to the job?
AnalyticsApps
Insider Connection @SkyePoint Decisions, Inc.
Responsibilities
Performs security incident response duties for a federal Agency incident response center.
Mentor junior analysts in standardized incident handling processes.
Assists in the triage, investigation, and closure of incident tickets. As part of the triage and investigation processes, the individual will use various tools to determine the validity, cause, and extent of reported security incidents. Tools include intrusion detection and various threat analytics tools.
Provides knowledge and expertise in tools, techniques, countermeasures, and trends in computer and network vulnerabilities and threats.
Assist with creation of playbooks and standard operating procedures.
Rotating on call schedule for after-hours alerts/incidents.
Investigating notable events from Splunk and Microsoft 365 Defender.
Participating in incident response tabletop exercises.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
BS or equivalent + 5 years related experience, or MS + 3 years related experience.
Must have CompTIA+ Security+ and CompTIA+ Cyber Security Analyst+ or equivalent.
Hands-on experience with Splunk Enterprise Security performing searches and reviewing log sources.
Must have recent hands-on experience with incident response life cycles including analysis, containment, eradication, recovery, and post incident activities.
Must be technical, a quick learner, detailed oriented, independent, resourceful, and with an analytical mindset.
Requires ability to pass a Public Trust suitability determination investigation. Preference will be made to individuals with a current or recent security clearance or Public Trust investigation.
Preferred
Microsoft Security Defender Advanced Threat Protection/ Experience, Microsoft Office 365, Microsoft Azure AD and Microsoft Cloud App Security.
Experience in open-source tools for the use in investigating malware incidents.
Experience using BMC Remedy or ServiceNow service management/ticketing system is desirable.
Experience performing these activities in support of a federal government agency is desirable.
Microsoft, Splunk certifications, GIAC Certified Incident Handler (GCIH), EC-Council Certified Incident Handler (ECIH), EC-Council Certified Ethical Hacker (CEH) or other senior level certifications are highly desirable.
Experience with creating Splunk content, dashboards, reports, and tuning existing alerts highly desired.
PowerShell, Python, etc. scripting experience is nice to have.
Network Packet capture (PCAP), report writing, remote forensics, Splunk UBA and Splunk SOAR experiences are nice to have.
Experience with a federal government agency.
Certifications such as Microsoft, Splunk, GIAC Certified Incident Handler (GCIH), EC-Council Certified Incident Handler (ECIH), EC-Council Certified Ethical Hacker (CEH) or other senior level certifications.
Experience with creating Splunk content, dashboards, reports, and tuning existing alerts.
PowerShell, Python, etc. scripting experience.
Network Packet capture (PCAP), report writing, remote forensics, Splunk UBA and Splunk SOAR experiences.
Benefits
Health Savings Accounts [HSAs]
Flex Spending Accounts [FSAs]
Full Dental Plans
ST/LT Disability
Life Insurance
401k matched
Company
SkyePoint Decisions, Inc.
SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia.
Funding
Current Stage
Growth StageRecent News
2024-02-09
2023-12-06
2022-09-16
Company data provided by crunchbase