Apply on Employer Site

TEKsystems · 1 day ago

DCO Watch Analyst Tier I

North Charleston, SC

Full-time

Hybrid

Entry Level

$35/hr - $45/hr

3+ years exp

TEKsystems is a leading provider of business and technology services, and they are seeking a Tier 1 Defensive Cyber Operations (DCO) Watch Analyst. This role involves monitoring and triaging security events within a Cybersecurity Service Provider environment, identifying suspicious events, and supporting incident response activities.

Information Technology

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Monitor network and host-based systems for suspicious activity using provided tools and SOPs

Validate security events and escalate potential incidents to Tier 2 analysts per CJCSM 6510.01B guidelines

Enter incident data into designated reporting systems with accuracy and timeliness

Assist in managing incident response campaigns by documenting and tracking basic incident details under supervision

Provide 24/7 support for incident response during assigned shifts, including non-core hours as needed

Participate in training to develop familiarity with CSSP tools and processes

Support basic log correlation tasks using tools like Splunk, Elastic, and Sentinel

Assist in program reviews and product evaluations as directed

Operations are conducted 24/7/365 across three regional operation centers (ROC)

Each ROC works four ten-hour shifts (Sunday-Wednesday or Wednesday-Saturday)

Shift placement is at the discretion of assigned managers

Overtime may be required to support incident response actions (Surge)

Up to 10% travel may be required

Qualification

IAT Level II CertificationCSSP-specific CertificationsLog Aggregation ToolsIncident Response KnowledgeDigital Forensics ExperienceCJCSM 6510.01BCommunication Skills

Required

Must have requisite certifications to fulfill DoD 8570 IAT Level II and CSSP-specific requirements

Bachelor's degree in relevant technical discipline or 3+ years of experience working in a CSSP, SOC, or similar environment

Must be a Citizen of USA

Must be IAT II and CND IR compliant

Will be required to obtain Windows OS cert - Fed VTE skill soft training with fulfill requirement (Free)

IAT II Certs and Above: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP

CSSP Certs: CEH, CFR, CCNA Cyber Ops, CCNA-Security, CySA+, GCIA, GCIH, GICSP, Cloud+, SCYBER, PenTest+, SSCP, CHFI, CFR, CND, CCNA-Security, GCFA, CISA, GSNA, CISM, CISSP, CCISO