Nightwing
Senior SOC Analyst
Nightwing, Sterling, Virginia, United States, 22170
Nightwing Senior SOC Analyst Sterling, Virginia Apply Now
VA543: 22270 Pacific Blvd, Dulles 22270 Pacific Boulevard Building CC5, Sterling, VA, 20166-6924 USA Position Role Type:
Onsite Nightwing is seeking a Senior SOC Analyst to support the critical mission of the DHS’s Hunt and Incident Response Team (HIRT), which secures the Nation’s cyber and communications infrastructure. The Senior SOC Analyst will oversee daily operations of the SOC, ensuring adherence to established security policies and procedures. Responsibilities: Oversee daily operations of the SOC, ensuring adherence to established security policies and procedures. Mentor junior analysts, providing guidance and training to enhance team capabilities. Foster a culture of continuous improvement within the SOC. Maintain and enhance the SOC’s tools and processes for efficiency and effectiveness. Monitor security events from multiple sources including SIEM, firewalls, IDS/IPS, EDR, etc. Analyze alerts to identify true security incidents, reducing false positives through advanced correlation techniques. Lead the response to security incidents, coordinating with other teams to mitigate threats. Document and analyze incidents to improve future response strategies. Research and analyze threads in cyber threats; incorporate threat intelligence into daily operations. Ensure that SOC activities align with regulatory requirements and industry standards. Prepare reports on security posture, incidents, and trends for senior management. Lead or participate in security projects, including the implementation of new security technologies or updates to existing systems. Required Skills: Must have an active Secret clearance, TS/SCI preferred. Must be able to obtain DHS Suitability. Must have proven leadership experience within a SOC environment. Experience with Elastic Security for SIEM. Experience with Crowdstrike EDR. Experience with AWS infrastructure and cloud security toolsets. Experience with network analysis, protocols, tools, and devices. Experience with host analysis on Windows and MacOS systems. Experience with using MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK) framework. Experience with applying threat intelligence to analyze cyber attacks and vulnerabilities. Desired Skills: Familiarity with the ThreatConnect platform. Excellent analytical and problem-solving skills. Strong communication skills, both written and verbal, for reporting and collaboration. Ability to manage and prioritize tasks in a dynamic, high-pressure environment. Takes the initiative to resolve issues and improve the organization. Devoted to building the team’s capabilities to execute the mission efficiently and effectively. A champion for automation and orchestration of security processes and tools. Ability to work independently with integrity in remote locations. Required Education: Must have a BS in Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of experience in cybersecurity and incident response. Desired Certifications: Certified Ethical Hacker (CEH) CompTIA Cybersecurity Analyst (CySA+) GIAC Certified Incident Handler (GCIH) Other equivalent security certifications will be considered. The salary range for this role is 130,000 USD - 272,000 USD. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit. This role is a U.S.-based role. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class. Privacy Policy and Terms:
Click on this link (http://www.rtx.com/privacy/Job-Applicant-Privacy-Notice) to read the Policy and Terms
#J-18808-Ljbffr
VA543: 22270 Pacific Blvd, Dulles 22270 Pacific Boulevard Building CC5, Sterling, VA, 20166-6924 USA Position Role Type:
Onsite Nightwing is seeking a Senior SOC Analyst to support the critical mission of the DHS’s Hunt and Incident Response Team (HIRT), which secures the Nation’s cyber and communications infrastructure. The Senior SOC Analyst will oversee daily operations of the SOC, ensuring adherence to established security policies and procedures. Responsibilities: Oversee daily operations of the SOC, ensuring adherence to established security policies and procedures. Mentor junior analysts, providing guidance and training to enhance team capabilities. Foster a culture of continuous improvement within the SOC. Maintain and enhance the SOC’s tools and processes for efficiency and effectiveness. Monitor security events from multiple sources including SIEM, firewalls, IDS/IPS, EDR, etc. Analyze alerts to identify true security incidents, reducing false positives through advanced correlation techniques. Lead the response to security incidents, coordinating with other teams to mitigate threats. Document and analyze incidents to improve future response strategies. Research and analyze threads in cyber threats; incorporate threat intelligence into daily operations. Ensure that SOC activities align with regulatory requirements and industry standards. Prepare reports on security posture, incidents, and trends for senior management. Lead or participate in security projects, including the implementation of new security technologies or updates to existing systems. Required Skills: Must have an active Secret clearance, TS/SCI preferred. Must be able to obtain DHS Suitability. Must have proven leadership experience within a SOC environment. Experience with Elastic Security for SIEM. Experience with Crowdstrike EDR. Experience with AWS infrastructure and cloud security toolsets. Experience with network analysis, protocols, tools, and devices. Experience with host analysis on Windows and MacOS systems. Experience with using MITRE Adversary Tactics, Techniques and Common Knowledge (ATT&CK) framework. Experience with applying threat intelligence to analyze cyber attacks and vulnerabilities. Desired Skills: Familiarity with the ThreatConnect platform. Excellent analytical and problem-solving skills. Strong communication skills, both written and verbal, for reporting and collaboration. Ability to manage and prioritize tasks in a dynamic, high-pressure environment. Takes the initiative to resolve issues and improve the organization. Devoted to building the team’s capabilities to execute the mission efficiently and effectively. A champion for automation and orchestration of security processes and tools. Ability to work independently with integrity in remote locations. Required Education: Must have a BS in Computer Science, Cybersecurity, Computer Engineering or related degree; or HS Diploma and 10+ years of experience in cybersecurity and incident response. Desired Certifications: Certified Ethical Hacker (CEH) CompTIA Cybersecurity Analyst (CySA+) GIAC Certified Incident Handler (GCIH) Other equivalent security certifications will be considered. The salary range for this role is 130,000 USD - 272,000 USD. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit. This role is a U.S.-based role. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class. Privacy Policy and Terms:
Click on this link (http://www.rtx.com/privacy/Job-Applicant-Privacy-Notice) to read the Policy and Terms
#J-18808-Ljbffr