BWXT · 1 day ago
Senior Cyber Security Operations Center (SOC) Analyst
Lynchburg, VA
Full-time
Onsite
Senior Level, Lead/Staff
$86K/yr - $136K/yr
10+ years expBWX Technologies, Inc. is a U.S.-based company specializing in nuclear solutions for global security and clean energy. They are seeking a Senior Cyber Security Operations Center Analyst who will focus on proactive security measures, including threat hunting and incident management, while mentoring team members and enhancing security operations.
Clean EnergyIndustrial EngineeringManufacturingMechanical Engineering
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Conduct thorough security assessments, red team exercises, and penetration tests targeting technology solutions to identify weaknesses and mitigate risks effectively
Actively monitor threat intelligence sources, evaluate security vulnerabilities, and apply industry best practices to develop pro-active recommendations for system hardening and risk mitigation
Technical lead for the design, implementation, and maintenance of security solutions tailored for red team engagements and SOC operations, including intrusion detection systems (IDS), advanced threat protection, and endpoint detection and response (EDR) solutions
Proficiently utilize security incident and event management (SIEM) systems to detect, investigate, and respond to incidents
Mentor and guide team to improve security operations and streamline incident response processes
Assist with security risk assessments to establish baseline security configurations for technology platforms and applications prior to deployment
Utilize a variety of vulnerability assessment and penetration testing tools to identify and prioritize vulnerabilities, recommend remediation actions, and validate the effectiveness of security measures
Serve as an escalation point during investigations when first and second level analysts are unable to resolve the incident
Actively participate as a member of the Cyber Security Incident Response Team (CSIRT), orchestrating response efforts for escalated incidents and guiding first responders
Author and maintain technical documentation for deployment, configuration, and management of security systems as required
Keep abreast of emerging trends and technologies in cybersecurity by attending relevant conferences, workshops, and engaging in professional development activities
Qualification
Required
A bachelor's degree in Cybersecurity, Information Technology, or a related field is preferred; equivalent work experience may be considered
At least 10 years of experience in IT and cybersecurity, with a strong emphasis on advanced incident response, threat hunting, and red team operations
Extensive practical experience in performing penetration testing and red teaming activities, including exploitation methodologies, post-exploitation techniques, and reporting findings and remediation strategies
Advanced technical proficiency in cybersecurity tools and technologies, including: Microsoft 365 security suite (Defender, Sentinel, Intune), Network security tools (IDS, next-generation firewalls, SIEM systems), Advanced endpoint protection and detection solutions (EDR, XDR), Vulnerability assessment tools for identifying and prioritizing vulnerabilities, Malware analysis and reverse engineering techniques
Proven ability to lead and manage security incident response efforts, including coordinating with cross-functional teams to mitigate threats and provide forensic analysis
Strong knowledge of the MITRE ATT&CK framework and its application in real-world attack scenarios, vulnerability assessments, and threat modeling
In-depth understanding of open-source and commercial cybersecurity tools for threat detection, prevention, and analysis, with hands-on experience in configuring, managing, and utilizing these tools
Demonstrate a strong commitment to confidentiality in handling sensitive information
Must be a U.S. citizen
Must be able to obtain and maintain a U.S. Department of Energy (DOE) clearance
Preferred
Experience with breach and attack simulation (BAS) and secure access service edge (SASE) solutions
Capable of producing detailed incident reports and conveying complex technical information to a variety of stakeholders using excellent written and verbal communication skills
Ability to train, mentor, and support other team members on advanced cybersecurity concepts, red teaming practices, and emerging threats
One or more of the following certifications: GSEC, CEH, CISSP, CISA, GCIH, OSCP, OSCE, or equivalent. A focus on offensive security certifications is highly valued
Flexibility to participate in an on-call rotation for security incident response duties, including after-hours availability when required
Benefits
Competitive salary and benefits package, including health, dental, and retirement plans.
Flexible work schedules and paid time off to promote a healthy work-life balance.
Professional development opportunities, including mentorship programs and sponsorship for continuing education.
An inclusive atmosphere that celebrates new perspectives and supports collaboration between different generations.
The chance to be part of a mission-driven organization making a positive impact on the future of energy.
Opportunities for continuous learning and training to grow throughout your career!
Company
BWXT
At BWX Technologies, Inc. (NYSE: BWXT), we are People Strong, Innovation Driven.
5001-10000 employees
Funding
Current Stage
Public CompanyTotal Funding
$1.75BKey Investors
Wells Fargo
2025-11-06Post Ipo Debt· $1.1B
2022-10-12Post Ipo Debt· $250M
2021-04-13Post Ipo Debt· $400M
Leadership Team
Rex Geveden
Chief Executive Officer
Recent News
2026-01-03
2025-12-13
The Motley Fool
2025-12-05
Company data provided by crunchbase