CSOC Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Peraton · 22 hours ago

CSOC Analyst

positionUS-OR-Portland
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$86K/yr - $138K/yr
date5+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a CSOC Analyst to monitor and investigate security alerts, assess threats, and implement incident response procedures in a 24x7x365 Cybersecurity Operations Center.

Information TechnologyRobotics
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

As a member of a CSOC shift, monitor security reporting systems, dashboards and indicators of suspicious activity and unauthorized access for an extensive critical infrastructure covering 8 states
Validate SIEM/EDR/SOAR security alerts, open case management investigations and perform investigations under the guidance of a lead analyst
Review threat and vulnerability advisories issued by various government organizations and make recommendations to management
Conduct research to determine the applicability of advisories to the company’s environment
Interact with internal Subject Matter Experts and functional groups to request information, discuss events, escalate issues and coordinate a response under the guidance of a lead analyst
Formulate mitigation recommendations and document investigations
Conduct open-source research and stay abreast of the latest cyber threats and security tools
Perform network and systems analysis of intrusion alerts to the network infrastructure and anomalous traffic, applications, operating systems, firewalls, proxy devices and malware detection, security incidents or anomalies flagged by monitoring tools, triage, and escalate them as warranted
Perform in-depth security analysis of alerts from firewalls and reviewing system logs for suspicious patterns, perform preliminary incident response, event analysis and threat intelligence
Investigate threats across multiple data systems and create incident review cases on notable events
Investigate flagged alerts, determine if they are real threats, and follow designated response and containment procedures
Confirm continuous data flows from system logs, PCAP captures, and intelligence feeds into the SIEM systems
Review flagged events that are detrimental to the company’s overall security posture; analyze and detect sophisticated and nuanced attacks, discern false positives and draft reports of results for management
Correlate network and system sensor events
Conduct forensic event investigation of logs and network protocol traffic and identify anomaly and potential threats
Provide near real-time and short-term correlation of data collected by the SIEM/EDR tools and investigate threats across data types over specific study time frames or systems
Provide strategic analysis and near real-time auditing, investigating, reporting, and coordinating tracking of security-related flagged incidents
Recommend changes to security assets such as firewalls, VPNs, to remediate issues or improve defensive posture to CSOC and security management
Assist with CSOC daily tasks and operations such as CSOC communications, completeness and fidelity of CSOC reports, and status of incident cases as directed by management

Qualification

Cybersecurity experienceSIEM toolsIncident responseThreat analysisCybersecurity certificationsAnalytical skillsCommunication skillsProblem-solving skillsStrategic thinkingTeam collaboration

Required

U.S. Citizenship Required
Must have the ability to obtain / maintain a DOE L Level or DOE Secret clearance
Degree in computer science, engineering, cybersecurity, information technology, or related field
5 years of experience with BS/BA; 3 years with MS/MA; 0 years with PhD
Cybersecurity experience in roles such as security monitoring, threat and risk assessment, incident response, forensic analysis, offensive testing, controls assessment, vulnerability research or CSOC operations
Understanding of industry cybersecurity standards such as FISMA, NIST 800 series, and regulatory compliance requirements
Demonstrated strategic thinking, CSOC operations leadership, or broad understanding of risk management
Strong analytical and problem-solving skills to investigate and assess security risks
Excellent verbal and written communications skills
Ability to communicate technical issues to both infrastructure owners and management
Must be able to work on a 4-month 24x7x365 shift rotation schedule

Preferred

Hold cybersecurity certification such as CISSP, CISM, SSCP, GIAC GSEC, OSCP, CEH, CISA SSCP, GIAC GCIH (GCIH), EC-Council CSA
A master's degree in computer science, engineering, cybersecurity, information technology, or related field

Benefits

Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay.

Company

Peraton

twittertwitter
Glassdoor3.6
company-logo
Peraton Fearlessly solving the toughest national security challenges.
dateFounded in 1992
location
Woodbridge, New Jersey, USA
people-size10001+ employees
web-link
https://www.peraton.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Thomas Terjesen
Chief Information Officer
linkedin

Recent News

MarketScreener
Two bidders vie to be project manager of massive FAA US air traffic overhaul
2025-09-25
Benzinga.com
Snowflake Partners With Peraton, Builds AI Fraud Detection Tools To Protect Taxpayer Dollars
2025-09-17
NDTV
Donald Trump's Golden Dome Still Shrouded In Mystery, Even For Its Builders
2025-08-15
Company data provided by crunchbase