CSOC Threat Management Specialist (Tier 2)
VA156: 8111 Gatehouse Rd, FallsChurch 8111 Gatehouse Road , Falls Church, VA, 22042 USA, United States
USD 85K-179K (estimate) Mid-level Full Time
Tasks
- Advise on remediation actions
- Analyze network traffic for intrusion attempts
- Automate incident triage with SOAR
- Configure Splunk alerts and investigations
- Correlate data from multiple sources
- Deploy and monitor Sentinel 1 agents
- Detect anomalies with AI and ML
- Escalate incidents for further investigation
- Execute response playbooks and SOPs
- Maintain visibility across cloud and endpoint environments
- Manage email security
- Monitor and respond to alerts across security platforms
- Monitor network security with FirePower
- Perform incident analysis
- Perform threat intelligence analysis
- Provide subject matter expertise on intrusion methodologies
- Recommend detection mechanisms
- Stay current on threat trends and AI ML research
- Support automation use cases for SOC
- Tune security policies and detection controls
Perks/Benefits
- N/A
Skills/Tech-stack
Amazon Web Services | Anomaly Detection | Azure Entra | Azure Entra ID | Boolean logic | Cloud Security | Cloud Security Command Center | Cloud apps | Cloud platform | Command Center | Control Frameworks | Data Analysis | Defender XDR | Defender for Cloud Apps | Defender for Endpoint | Defender for Office 365 | Entra ID | Feature Engineering | Firepower | Google Cloud | Google Cloud Platform | Google Cloud Security | Google Cloud Security Command Center | IDS/IPS | Incident Triage | Machine Learning | Microsoft Azure | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Cloud | Microsoft Defender for Cloud Apps | Microsoft Defender for Endpoint | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Sentinel | Network Traffic | Network Traffic Analysis | Office 365 | Proofpoint | Risk Management | SOAR | Security Command Center | Splunk | TCP/IP | Threat Intelligence | Traffic analysis | Web Services
Education
Related jobs
-
Senior GRC Analyst USD 115K-150K800-171 | Access Management | Audit | CIS Critical Security | CIS Critical Security Controls401k | Employee assistance program | Paid Holidays | Paid time offSenior-level Full TimePhoenix, AZ, United States4h ago
-
Senior GRC Analyst USD 105K-133K800-171 | Audit | CIS Critical Security | CIS Critical Security Controls | Cloud Security401k | Comprehensive health benefits | Disability coverage | Employee assistance program | Flexible spending accountsSenior-level Full TimeSt. Louis, MO, United States4h ago
-
Senior GRC Analyst USD 105K-133K800-53 | Access Management | Audit | CIS Critical Security | CIS Critical Security Controls401k | Disability coverage | Discretionary annual bonus | Employee assistance program | Flexible spending accountsSenior-level Full TimeAtlanta, GA, United States4h ago
-
Access Control | Contract Review | Cybersecurity Framework | Data Protection | Incident ResponseSenior-level ContractAustin, United States5h ago
-
AI transparency | Algorithm Governance | Algorithmic Fairness | Artificial Intelligence | Audit toolingMid-level Full TimeSan Jose, California, United States7h ago
-
Threat Analyst, Mandiant Custom Intelligence USD 113K-161KAdversary Tactics Techniques and Procedures | Adversary tactics | Artificial Intelligence | Cyber Threat | Cyber Threat IntelligenceMid-level Full TimeVirginia, USA; United States8h ago
-
Senior Quantitative Risk Manager - BSA/AML USD 148K-247KData Analysis | Data Governance | Enterprise Miner | Machine Learning | Model MonitoringSenior-level Full TimeBuffalo, NY, United States19h ago
-
Sr Vulnerability Management Analyst USD 100K-164KAutomation | CTEM | CVSS | Cloud Security | Configuration ManagementHybrid work modelSenior-level Full TimeMalvern, PA, United States19h ago
-
Information Security Analyst USD 81K-107K800-171 | AWS | Access Control | Access reviews | Azure401k match | 9/80 schedule | Healthcare | Paid maternity and parental leave | RemoteMid-level Full TimeMojave, CA R19h ago
-
Cyber Assurance Auditor Associate USD 83K-108KACAS | Correlation logic | DISA Security Technical Implementation Guide | DISA security | IBM QRadar401k | Company Paid LifeandAD&D | Paid Holidays | Paid parental leave | Paid time offMid-level Full TimeHuntsville, Alabama, United States20h ago
-
Access | Automation | Business Continuity | Business Intelligence | Data QualityEntry-level Full TimeDallas, TX, United States21h ago
-
Senior Information Security GRC Analyst USD 155K-165KAudit management | AuditBoard | Awareness Training | CCPA | Compliance Management401k | Employee Sick Time | Flexible time off | Home office stipend | Medical, dental, and vision insuranceSenior-level Full TimeRemote, US R21h ago
-
Junior Cybersecurity Analyst - Richmond USD 40K-40KCompliance | Cybersecurity | Information security | Risk Management401k match | Gym membership stipend | Healthcare stipend | In-office snacks | Paid federal holidaysEntry-level Full TimeRichmond, VA22h ago
-
Junior Cybersecurity Analyst - NYC USD 44K-50KCompliance | Cybersecurity | IT Operations | Incident Response | Report Writing401k match | Federal Holidays | Gym membership stipend | Healthcare stipend | In-office snacksEntry-level Full TimeNew York, NY22h ago
-
Cybersecurity Senior IAM Analyst USD 90K-136KAccess Management | Active Directory | Authentication | Authorization | Business AnalysisAfter-hours support | On-call support | TravelSenior-level Full TimeLas Vegas, NV, United States1d ago
-
Offensive Security Analyst USD 74K-88K.NET | Attack Path | Attack path mapping | Attack surface | Attack surface managementBackground checks | Onsite work requirementEntry-level Full TimeBirmingham, AL, United States1d ago
-
Information Security Analyst II USD 123K-157KAWS | Audit Lifecycle | Automation Scripting | Azure | Control TestingCommunity events and learning talks | Employee resource groups | Employee stock purchase plan | Hybrid work | Mental health benefitsSenior-level Full TimeNew York, New York, USA1d ago
-
Cloud SCA-R, Senior USD 115K-300KAmazon Web Services | Cloud Architecture | Cloud Computing | Cloud Computing Security | Cloud Computing Security Requirements Guide401k match | Dental insurance | FSA | HSA | Health benefitsSenior-level Full TimeFt. Meade, MD1d ago
-
Control Testing | Coso | Cybersecurity | ISO 27001 | Incident Threat IntelligenceBonus program | Health insurance | Paid time off | Retirement planEntry-level Full TimeBuffalo, New York, United States; Rochester, …1d ago
-
Cyber Security Analyst (Intern) USD 46K-79KAssessment Reports | Atlassian Jira | Best practices | Cybersecurity Best Practices | Implementation guidesRemote workEntry-level Internship Part TimeFAIRFAX, VA, United States1d ago
-
Senior Information Assurance / Cyber Analyst USD 108K-176K800-53 | Agile | Checkmarx | Continuous Monitoring | Control ImplementationDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offSenior-level Full TimeRemote (United States) R1d ago
-
Cybersecurity Analyst USD 95K-105KData Visualization | Endpoint protection | Firewalls | Forensics | IDS401k match | Commuter benefits | Flexible work options | Holidays | Medical, dental, vision benefitsMid-level Full TimeWashington, DC1d ago
-
Senior Cybersecurity Governance Specialist USD 121K-185KAudit management | COBIT | Coso | Cybersecurity Framework | HIPAASenior-level Full TimeCINCINNATI, OH, United States1d ago
-
Cyber Security Analyst USD 90K-138K800-37 | 800-53 | AWS GovCloud | Accreditation | Azure Government401k matching | Health insuranceSenior-level Full TimeWashington, DC, United States1d ago
-
Cybersecurity RMF Specialist USD 125K-170KCSSP | Cloud Security | Compliance | Continuous Monitoring | Defender for Endpoint100 percent remoteMid-level Full TimeUnited States R1d ago