SOC Analyst
Koniag Government Services · Denver, CO · 1 wk ago
Information TechnologyFull-time
About the role
Tuknik Government Services, LLC, a Koniag Government Services company, is seeking a SOC Analyst to support TGS and our government customer in Denver, CO. This position requires the candidate to be able to obtain a Public Trust.
Responsibilities
- Provide 24/7/365 monitoring and analysis of security event alerts across the enterprise network.
- Maintain and analyze agency systems and daily log events to identify potential security threats.
- Review incoming alerts, investigate, and ticket all identified potential security threats using the agency's incident response-ticketing platform.
- Prioritize all incoming alerts and respond accordingly in a timely manner.
- Validate traffic and/or network activity (per alerts/logs) as anomalous in accordance with agency standards and procedures.
- Identify, investigate, and escalate potential security threats to senior agency resources when needed.
- Measure and model traffic, while identifying patterns and ports.
- Produce reports, both contractual and ad hoc, providing information on events, trends, issues, and activity as requested by the federal customer.
- Utilize OSINT tools to identify and mitigate potential cybersecurity threats to the customer’s network.
- Identify the necessity for, and implementation of, the creation of new intrusion detection signatures.
- Work in a Security Operations Center (SOC) environment, providing detailed documentation of reported incidents utilizing ServiceNow.
- Perform triage, investigations, and respond to a wide variety of alerts.
Requirements
- High School Diploma accompanied with related advanced training and certifications in cybersecurity or a related field.
- BS/BA degree preferred.
- Must have at least one of the following certifications: CompTIA Network+, CompTIA Security +, or CompTIA CySA+.
- Documented proof of certifications is required prior to the start of employment.
- Experience with Windows Operating System and Microsoft 365 tools.
- Great written and oral communication skills, with the ability to convey complex information clearly and effectively.
- Must live within a 2-hour commute of the designated Security Operations Center for which they are applying.
- Ability to obtain a Public Trust clearance.
Benefits
- Competitive compensation.
- Extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.
Schedule
- Shift: 130pm to 10pm EST Sat to Wed OR 230pm EST to 11pm EST Sun to Thur
Qualifications
- Minimum of 2-4 years of experience as an analyst in a SOC or similar environment.
- Working knowledge of SOC tools and their usage for detecting intrusion attempts.
- Demonstrated experience creating custom intrusion signatures to detect specific network traffic anomalies.
- Demonstrated experience in populating sensors with newly available signatures when responding to events or management requests.
- Knowledge of potential threat reporting and tracking by means of at least one large-scale ticketing system (ServiceNow, CAPRS, or other similar system).
- Ability to utilize email, instant messaging, and other monitoring tools to effectively navigate through the incident response process.