CSOC Threat Management Specialist (Tier 2)
VA156: 8111 Gatehouse Rd, FallsChurch 8111 Gatehouse Road , Falls Church, VA, 22042 USA, United States
USD 85K-179K (estimate) Mid-level Full Time
Tasks
- Advise on remediation actions
- Analyze network traffic for intrusion attempts
- Automate incident triage with SOAR
- Configure Splunk alerts and investigations
- Correlate data from multiple sources
- Deploy and monitor Sentinel 1 agents
- Detect anomalies with AI and ML
- Escalate incidents for further investigation
- Execute response playbooks and SOPs
- Maintain visibility across cloud and endpoint environments
- Manage email security
- Monitor and respond to alerts across security platforms
- Monitor network security with FirePower
- Perform incident analysis
- Perform threat intelligence analysis
- Provide subject matter expertise on intrusion methodologies
- Recommend detection mechanisms
- Stay current on threat trends and AI ML research
- Support automation use cases for SOC
- Tune security policies and detection controls
Perks/Benefits
- N/A
Skills/Tech-stack
Amazon Web Services | Anomaly Detection | Azure Entra | Azure Entra ID | Boolean logic | Cloud Security | Cloud Security Command Center | Cloud apps | Cloud platform | Command Center | Control Frameworks | Data Analysis | Defender XDR | Defender for Cloud Apps | Defender for Endpoint | Defender for Office 365 | Entra ID | Feature Engineering | Firepower | Google Cloud | Google Cloud Platform | Google Cloud Security | Google Cloud Security Command Center | IDS/IPS | Incident Triage | Machine Learning | Microsoft Azure | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Cloud | Microsoft Defender for Cloud Apps | Microsoft Defender for Endpoint | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Sentinel | Network Traffic | Network Traffic Analysis | Office 365 | Proofpoint | Risk Management | SOAR | Security Command Center | Splunk | TCP/IP | Threat Intelligence | Traffic analysis | Web Services
Education
Related jobs
-
Automation | Cyber Security | Data Analysis | Incident Response | Metrics designSenior-level Full TimeKirkland, WA, USA3h ago
-
Cloud Security | Compliance Automation | Compliance Risk | Compliance Risk Management | Continuous Monitoring401k match | Flexible scheduling | Health insurance | Parental leave | Vacation daysSenior-level Full TimeUnited States12h ago
-
Cloud Security | Compliance Risk | Compliance Risk Management | Continuous Monitoring | DoD IL5401k match | Flexible schedule | Health coverage | Paid vacation | Parental leaveSenior-level Full TimeUnited States13h ago
-
Cyber Security Analyst - Cyber Policy USD 74K-155KAccreditation | Audit Support | Compliance | Cybersecurity | Cybersecurity PolicyAD D Insurance | Dental insurance | Employee assistance plan | Life insurance | Long-term disabilitySenior-level Full TimeAiken, SC, United States17h ago
-
Cyber Threat Hunt (CTH) Lead USD 116K-243KCyber Threat | Cyber Threat Intelligence | Cybersecurity monitoring | Detection engineering | Endpoint ManagementSenior-level Full TimeArlington, VA17h ago
-
Cybersecurity Analyst USD 100K-130KAWS | Access Management | Bash | Cloud Security | Cybersecurity Framework401k matching | Dental insurance | Family leave | Health insurance | Paid time offMid-level Full TimeAtlanta, GA18h ago
-
Information Security Compliance Analyst USD 130K-174KACH | Audit Readiness | Contract Review | Control Testing | Data subject requests401k | Employer-paid disability insurance | Employer-paid life insurance | Hybrid work schedule | Lunch stipend when onsiteSenior-level Full TimeAustin, TX19h ago
-
Embedded Intelligence Analyst USD 100K-123KData Analysis | Geopolitical Analysis | Incident Management | Open Source | Open-source intelligence401k matching | Dental insurance | Employee assistance program | Medical insurance | Mental health daysMid-level Full TimeSouthern California, CA, United States21h ago
-
Senior Information Security Analyst USD 105K-149KAI Security | API | AWS | Azure | CI/CDDependent Care Flexible Spending Accounts | Employee assistance program | Generous vacation benefits | Paid Holidays | Paid personal timeSenior-level Full TimeWaltham, MA, United States21h ago
-
Sr. Security Analyst USD 140K-190KDetection Systems | Elastic SIEM | Encryption | Endpoint Security | Enterprise SearchDomestic and international travel | Secret clearance | US PassportSenior-level Full TimeRedstone Arsenal, AL, United States22h ago
-
Sr Splunk Specialist USD 160K-180KAudit Logging | Cyberhardening | DISA STIGs | Dashboards | Data dashboardsSenior-level Full TimeAlexandria, VA, United States22h ago
-
Data Insights Analyst USD 102K-130KCRM | Dashboarding | Data Analysis | Data Governance | Data PreparationMid-level Full TimeARLINGTON, VA, United States22h ago
-
SOC Analyst Junior USD 61K-74KCrowdStrike | Cyber Kill Chain | Enterprise Security | Incident Response | Kill ChainEntry-level Full TimeWindsor Mill, MD, United States22h ago
-
SOC Analyst Sr USD 111K-136KCrowdStrike | Cyber Kill Chain | Enterprise Security | Firewall logs | Incident ResponseSenior-level Full TimeWindsor Mill, MD, United States22h ago
-
Lead Technical GRC Analyst (Governance) USD 110K-140KAI | Active Directory | Archer | Azure Active Directory | CIS Benchmarks401k | Dental insurance | Discounts | Medical insurance | Paid leaveSenior-level Full TimeNew York, NEW YORK, United States R22h ago
-
Security Analyst I USD 45K-86KAccess monitoring | Compliance Management | Incident Response | Microsoft Sentinel | OSI ModelIndependent work environment | Night shift support | Proactive security roleMid-level Full TimeRemote (Cincinnati, OH, US) R22h ago
-
Cyber Security Associate- IT Information Security USD 88K-120KAccess Control | Alert triage | Cause analysis | Change Management | Data Loss Prevention401k matching | Career development | Commuter benefits | Dental insurance | Elder care assistanceEntry-level Full TimeNew York, NY, United States23h ago
-
IT Security Analyst (Tier 1) USD 82K-110KAntivirus | Endpoint protection | FTP | Firewall | HTTPOnsite work | Personal skills development | Professional development | Shift work | Training opportunitiesMid-level Full TimeTampa, Florida, United States1d ago
-
Cyber Threat Intelligence Research Analyst USD 134K-201KCybersecurity Research | EDR | Incident Response | Log Analysis | Malware analysisIn-office role | Travel for events and company visits | Webinars and cross team collaborationSenior-level Full TimeOrlando, FL1d ago
-
Cloud Security Analyst USD 57K-82KAWS | Access Management | Cloud Security | Cloud security monitoring | EncryptionCaregiving support | Employee assistance program | Employee stock purchase program | Health and welfare benefits | Paid parental leaveEntry-level Full TimeHilton - System Solutions - Dallas …1d ago
-
Forensics Lead USD 133K-190KDigital forensics | Indicators of compromise | Malware analysis | Network Traffic | Network Traffic AnalysisSenior-level Full TimeUSA-VA-Chantilly, USA-AZ-Chandler1d ago
-
Senior Cyber Incident Response Analyst USD 109K-181KAlert analysis | Cybersecurity | Incident Response | Log Analysis | Mitre AttackSenior-level Full TimeUSA-VA-McLean1d ago
-
Information Assurance Specialist USD 96K-138KAWS | AWS Security | AWS Security Hub | Amazon Inspector | Assess OnlyMid-level Full TimeMechanicsburg, PA1d ago
-
Senior Cybersecurity Support USD 116K-178KAssessment and Authorization | Authority to Operate | Authority to Test | Cybersecurity | Embedded SystemsSenior-level Full TimeDayton, OH, United States1d ago
-
C2 Ops/Cyber Security USD 112K-190KADS-B | Assured PNT | Avionics integration | CNS ATM | Command and controlOccasional travel | Remote workSenior-level Full TimeRobins AFB, GA, United States1d ago