Sev1Tech
NOSC Tier 2 Specialist
Sev1Tech, Washington, District of Columbia, us, 20022
Overview/ Job Responsibilities
Sev1Tech is looking for Network Operations and Security Center (NOSC) Tier 2 Specialist to play a role on a very large program involving network, cybersecurity, and cloud operations and engineering support services to a government customer with a significant mission for security and public safety. The program will encompass a wide range of tasks including but not limited to: Program Management; Monitoring, Analysis and Incident Response; Tier 3 Engineering and O&M; Field Engineering technical support; and Cloud operations.
Responsibilities include but are not limited to:Monitor network, security, system, and cloud environments for events and perform triage analysis to identify or prevent incidents; perform network, security, system, and cloud incident response as neededRespond to incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with NOSC requirementsWork closely with other teams to assess - and provide recommendations for reducing - operational risks.Maintains records of monitoring and incident response activities, utilizing case management and ticketing technologies.Perform monitoring and analysis using Splunk analytics tools.Monitor dashboards for malicious events, phishing events, spoofing events, DDoS attacks, SQL Injection events, network connectivity events, system/device performance events and other potentially high-risk incidentsRecognizes intrusion attempts and compromises through reviews and analyses of relevant event detail and summary informationRecommends changes to SOPs and related documentation.Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on dutyLog all incident details and prioritization codesProvide Tier 2 support, including WAN and LAN connectivity, routers, firewalls, and securitySupport remote access platforms such as VPN, Terminal ServicesAssign unresolved incidents to higher Tier support or Internet service providers and product vendors to coordinate restoration of service and obtain the necessary information for recording/tracking the outage or degradation of serviceKeep component NOCs and SOCs informed of their incident's status at agreed intervals and continuously update incidents as neededNotify Government Leads and other stakeholders of high impact/priority failures using the appropriate escalation proceduresMinimum Qualifications
Bachelor's degree in Computer Science, Information Technology, Cyber Security or equivalent educational or professional experience and/or qualificationsMinimum four (4) years of experience working in a NOC, SOC, or NOSC environment with Splunk and or other logging, monitoring, and dashboard systemsStrong interpersonal skills and prior professional services experience in 24x7 operationsBackground in incident response, operations and threat intelligenceWilling to work in a 24x7x365 operations center environment; may be expected to work some holidays and allow for flexible schedulingAt least one security or network certificationClearance Requirement: Public Trust clearance or higher; Public Trust clearance with Dept of Homeland Security (DHS) or Customs & Border Protection (CBP) preferredOn-site presence is required for this roleDesired Qualifications
Knowledge in incident response, vulnerability management, security intelligence, automation/ scripting and/or the operations of advanced networking and security toolsAbility to handle multiple competing priorities in a fast-paced and high-pressure environmentAbility to work effectively with technical and non-technical business usersDesirable certifications include, but not limited to: CompTIA Security+, CCNA, SANs GSEC, GCIH, GCIA. EC Council C|EH
About Sev1Tech LLC
Founded in 2010, Sev1Tech provides IT, engineering, and program management solutions delivery. Sev1Tech focuses on providing program and IT support services to critical missions across Federal and Commercial Clients. Our Mission is to Build better companies. Enable better government. Protect our nation. Build better humans across the country.
Join the Sev1Tech family where you can achieve great accomplishments while fostering a satisfying and rewarding career progression. Please apply directly through the website at: https://www.sev1tech.com/careers/current-openings/#/ #joinSev1tech
For any additional questions or to submit any referrals, please contact: eileen.mckenzie@sev1tech.com
Sev1Tech is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Sev1Tech is looking for Network Operations and Security Center (NOSC) Tier 2 Specialist to play a role on a very large program involving network, cybersecurity, and cloud operations and engineering support services to a government customer with a significant mission for security and public safety. The program will encompass a wide range of tasks including but not limited to: Program Management; Monitoring, Analysis and Incident Response; Tier 3 Engineering and O&M; Field Engineering technical support; and Cloud operations.
Responsibilities include but are not limited to:Monitor network, security, system, and cloud environments for events and perform triage analysis to identify or prevent incidents; perform network, security, system, and cloud incident response as neededRespond to incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with NOSC requirementsWork closely with other teams to assess - and provide recommendations for reducing - operational risks.Maintains records of monitoring and incident response activities, utilizing case management and ticketing technologies.Perform monitoring and analysis using Splunk analytics tools.Monitor dashboards for malicious events, phishing events, spoofing events, DDoS attacks, SQL Injection events, network connectivity events, system/device performance events and other potentially high-risk incidentsRecognizes intrusion attempts and compromises through reviews and analyses of relevant event detail and summary informationRecommends changes to SOPs and related documentation.Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on dutyLog all incident details and prioritization codesProvide Tier 2 support, including WAN and LAN connectivity, routers, firewalls, and securitySupport remote access platforms such as VPN, Terminal ServicesAssign unresolved incidents to higher Tier support or Internet service providers and product vendors to coordinate restoration of service and obtain the necessary information for recording/tracking the outage or degradation of serviceKeep component NOCs and SOCs informed of their incident's status at agreed intervals and continuously update incidents as neededNotify Government Leads and other stakeholders of high impact/priority failures using the appropriate escalation proceduresMinimum Qualifications
Bachelor's degree in Computer Science, Information Technology, Cyber Security or equivalent educational or professional experience and/or qualificationsMinimum four (4) years of experience working in a NOC, SOC, or NOSC environment with Splunk and or other logging, monitoring, and dashboard systemsStrong interpersonal skills and prior professional services experience in 24x7 operationsBackground in incident response, operations and threat intelligenceWilling to work in a 24x7x365 operations center environment; may be expected to work some holidays and allow for flexible schedulingAt least one security or network certificationClearance Requirement: Public Trust clearance or higher; Public Trust clearance with Dept of Homeland Security (DHS) or Customs & Border Protection (CBP) preferredOn-site presence is required for this roleDesired Qualifications
Knowledge in incident response, vulnerability management, security intelligence, automation/ scripting and/or the operations of advanced networking and security toolsAbility to handle multiple competing priorities in a fast-paced and high-pressure environmentAbility to work effectively with technical and non-technical business usersDesirable certifications include, but not limited to: CompTIA Security+, CCNA, SANs GSEC, GCIH, GCIA. EC Council C|EH
About Sev1Tech LLC
Founded in 2010, Sev1Tech provides IT, engineering, and program management solutions delivery. Sev1Tech focuses on providing program and IT support services to critical missions across Federal and Commercial Clients. Our Mission is to Build better companies. Enable better government. Protect our nation. Build better humans across the country.
Join the Sev1Tech family where you can achieve great accomplishments while fostering a satisfying and rewarding career progression. Please apply directly through the website at: https://www.sev1tech.com/careers/current-openings/#/ #joinSev1tech
For any additional questions or to submit any referrals, please contact: eileen.mckenzie@sev1tech.com
Sev1Tech is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.