ECS is seeking a SIEM Analyst to work in our Vienna, VA office. Please Note: This position is contingent upon contract award.
Job Description: ECS is seeking a Security Information and Event Management (SIEM) Analyst to support a cloud hosting contract. The SIEM analyst role will provide analysis on various data sources related to network security to find possible vulnerabilities or intrusions.
Perform analysis on network activity data; including, network flow logs, signature-based IDS/IPS alerts and event data, and all other relevant network and system related data.
Troubleshoot alerts, interface with Cyber/IA compliance team on policy, identify possibility of system infection, compromises, or high-risk exposure. Prepare detailed analysis reports.
Analyze large volumes of network flow data looking for specific patterns/characteristics or general anomalies.
Find trends and correlate data from several sources for reporting regarding enterprise-wide network activity.
Develop and implement custom scripts to automate data-parsing and simple analytics.
Create reports on key events and findings.
Work with Cyber/IA team to identify indicators from cyber threat intelligence sources, incident reporting, and published technical advisories and bulletins.
Experience with ELK and rule creation.
Bachelor's Degree in Computer Science or a related technical field and a minimum of 5 years related technical work experience
Active Secret Security Clearance.
Working knowledge of security concepts and analysis tools
Working knowledge of networking concepts architectures.
Awareness of the common cyber products and services and their features and limitations.
Ability to work and produce results in an agile and fast-paced environment with dynamic deadlines.
Security+ or other DoD 8570 compliant certification
AWS Cloud Practitioner or Solutions Architect Associate certification
Experience working within the Federal government and/or DoD
DODD 8570 Level II certification (SANS certifications, CISSP).
Familiarity with incident response products and best practices.
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 2300+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.