This job listing has expired and the position may no longer be open for hire.

SIEM Analyst at ECS Corporate Services

Posted in Other 30+ days ago.

This job brought to you by CareerBuilder

Location: Vienna, Virginia

Job Description:
ECS is seeking a SIEM Analyst to work in our Vienna, VA office. Please Note: This position is contingent upon contract award.

Job Description:
ECS is seeking a Security Information and Event Management (SIEM) Analyst to support a cloud hosting contract. The SIEM analyst role will provide analysis on various data sources related to network security to find possible vulnerabilities or intrusions.

  • Perform analysis on network activity data; including, network flow logs, signature-based IDS/IPS alerts and event data, and all other relevant network and system related data.
  • Troubleshoot alerts, interface with Cyber/IA compliance team on policy, identify possibility of system infection, compromises, or high-risk exposure. Prepare detailed analysis reports.
  • Analyze large volumes of network flow data looking for specific patterns/characteristics or general anomalies.
  • Find trends and correlate data from several sources for reporting regarding enterprise-wide network activity.
  • Develop and implement custom scripts to automate data-parsing and simple analytics.
  • Create reports on key events and findings.
  • Work with Cyber/IA team to identify indicators from cyber threat intelligence sources, incident reporting, and published technical advisories and bulletins.
  • Experience with ELK and rule creation.

Required Skills:
  • Bachelor's Degree in Computer Science or a related technical field and a minimum of 5 years related technical work experience
  • Active Secret Security Clearance.
  • Working knowledge of security concepts and analysis tools
  • Working knowledge of networking concepts architectures.
  • Awareness of the common cyber products and services and their features and limitations.
  • Ability to work and produce results in an agile and fast-paced environment with dynamic deadlines.
  • Security+ or other DoD 8570 compliant certification
  • AWS Cloud Practitioner or Solutions Architect Associate certification

Desired Skills:
  • Experience working within the Federal government and/or DoD
  • DODD 8570 Level II certification (SANS certifications, CISSP).
  • Familiarity with incident response products and best practices.

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 2300+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.