Apply on Employer Site

ECS · 1 month ago

Sr. Security Analyst

Fairfax, VA

Full-time

Onsite

Mid, Senior Level

2+ years exp

ECS is a leading managed cybersecurity services provider, and they are seeking a Senior Security Analyst to work in their Fairfax, VA office. The role involves leveraging technical skills in cybersecurity to protect customer data, engage across multiple teams, and respond to cyber threats effectively.

Artificial Intelligence (AI)Cloud InfrastructureComplianceConsultingCyber SecurityInformation TechnologyMachine LearningSecuritySoftware

No H1B

U.S. Citizen Only

Responsibilities

Network Monitoring and Intrusion Detection: Perform analysis using various defense tools, including IDS/IPS, firewalls, and host-based security systems

SIEM Management: Utilize Elastic SIEM to correlate events and identify indicators of threats, creating actionable intelligence

Threat Research: Investigate emerging threats and vulnerabilities to enhance incident identification processes

Threat Detection: Implement both log-based and endpoint-based detection strategies to identify and mitigate threats from multiple sources

Content Development: Develop and customize SIEM content such as machine learning rules, signatures, and dashboards according to customer requirements

Activity Correlation: Correlate data across network, cloud, and endpoints to identify attacks and unauthorized actions

Alert Management: Review and respond to alerts from SIEM and other sensors; document incidents in formal, technical reports

Phishing Analysis: Analyze phishing email submissions to determine threat levels and appropriate responses

Incident Response Support: Provide effective incident response and mitigation strategies to contain and rectify breaches

Threat Intelligence Integration: Collaborate with threat intelligence and threat-hunting teams to maintain up-to-date knowledge of threat landscapes

Tool Evaluation: Assist in assessing new security tools and analytical techniques for integration into managed security services

Breach Investigation: Support both large-scale and smaller-scale cyber breach investigations

Stakeholder Communication: Effectively communicate cyber events and findings to both internal and external stakeholders

Qualification

Elastic SIEMCybersecurity ExpertiseAnalytical SkillsProgramming/ScriptingContent CreationThreat IntelligencePhishing AnalysisIncident ResponseStakeholder CommunicationTool EvaluationBreach InvestigationCommunication SkillsProblem-Solving

Required

2+ years of cyber experience

Deep Knowledge of Elastic SIEM: Proficient in using Elastic SIEM for monitoring, threat detection, and response. Experience with using Kibana, Logstash, Ingest Pipelines, Enterprise Search or Observability preferred

Cybersecurity Expertise: Strong understanding of network protocols, encryption, and vulnerabilities

Analytical Skills: Ability to analyze complex data from various sources to deduce patterns and detect anomalies

Programming/Scripting: Familiarity with scripting languages like Python or PowerShell to automate tasks and manipulate data

Content Creation: Experience in creating and tuning SIEM rules, signatures, and dashboards

Communication Skills: Excellent written and verbal communication skills for reporting and stakeholder engagement

Problem-Solving: Strong problem-solving skills with the ability to work under pressure in a fast-paced environment

Preferred

Certifications: Preferred certifications include CISSP, CEH, GCIH, or Elastic Certified Analyst

Experience: Previous experience in a cybersecurity operations center (SOC) environment is highly desirable

Prior experience working as an analyst in a Security Operations Center (SOC)

Prior experience working EDR, SIEM, SOAR, and ticketing technologies

Knowledge of threat actor tactics, techniques, and procedures (TTPs)

Ability to support ad hoc scripting in any language

Possess an industry-recognized entry-level certification (e.g., A+, Net+, Sec+, GSEC, etc.)

Company

ECS

Glassdoor3.6

ECS is a fast-growing 4,000-person, $1.2B provider of advanced technology solutions for federal civilian, defense, intelligence, and commercial customers.

Founded in 2001

Fairfax, Virginia, USA

1001-5000 employees