CSOC Threat Management Specialist (Tier 2)
VA156: 8111 Gatehouse Rd, FallsChurch 8111 Gatehouse Road , Falls Church, VA, 22042 USA, United States
USD 85K-179K (estimate) Mid-level Full Time
Tasks
- Advise on remediation actions
- Analyze network traffic for intrusion attempts
- Automate incident triage with SOAR
- Configure Splunk alerts and investigations
- Correlate data from multiple sources
- Deploy and monitor Sentinel 1 agents
- Detect anomalies with AI and ML
- Escalate incidents for further investigation
- Execute response playbooks and SOPs
- Maintain visibility across cloud and endpoint environments
- Manage email security
- Monitor and respond to alerts across security platforms
- Monitor network security with FirePower
- Perform incident analysis
- Perform threat intelligence analysis
- Provide subject matter expertise on intrusion methodologies
- Recommend detection mechanisms
- Stay current on threat trends and AI ML research
- Support automation use cases for SOC
- Tune security policies and detection controls
Perks/Benefits
- N/A
Skills/Tech-stack
Amazon Web Services | Anomaly Detection | Azure Entra | Azure Entra ID | Boolean logic | Cloud Security | Cloud Security Command Center | Cloud apps | Cloud platform | Command Center | Control Frameworks | Data Analysis | Defender XDR | Defender for Cloud Apps | Defender for Endpoint | Defender for Office 365 | Entra ID | Feature Engineering | Firepower | Google Cloud | Google Cloud Platform | Google Cloud Security | Google Cloud Security Command Center | IDS/IPS | Incident Triage | Machine Learning | Microsoft Azure | Microsoft Defender | Microsoft Defender XDR | Microsoft Defender for Cloud | Microsoft Defender for Cloud Apps | Microsoft Defender for Endpoint | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Sentinel | Network Traffic | Network Traffic Analysis | Office 365 | Proofpoint | Risk Management | SOAR | Security Command Center | Splunk | TCP/IP | Threat Intelligence | Traffic analysis | Web Services
Education
Related jobs
-
Audio Visual | Audio-Visual Support | Cause analysis | Customer Service | Hardware TroubleshootingMid-level ContractTallahassee, United States17h ago
-
Mid Level Cyber Security Specialist USD 150K-206KCNE Development | CNO Tools | Environment Management | Ethical Hacking | Functional testingMid-level Full TimeWoodbridge, United States17h ago
-
CTI Methodologies | Cyber Threat | Cyber Threat Intelligence | Enterprise antivirus | FirewallsSenior-level Full TimeCalifornia, USA19h ago
-
Compliance Analyst, Public Sector USD 111K-159KAdvanced Analytics | Agile methodology | Auditing | Automation | ComplianceMid-level Full TimeReston, VA, USA; Washington D.C., DC, …19h ago
-
Associate Compliance Analyst, Public Sector USD 90K-128KAutomation | Cloud platform | Compliance Management | Data analytics | Generative AIMid-level Full TimeReston, VA, USA; Washington D.C., DC, …19h ago
-
Compliance Analyst, Google Public Sector USD 111K-159KAdvanced Analytics | Agile methodology | Apps Script | Artificial Intelligence | Authorization and AccreditationActive Top Secret SCI clearance | Current polygraphMid-level Full TimeReston, VA, USA; Washington D.C., DC, …19h ago
-
Artificial Intelligence | Automation | Cause analysis | Data Analysis | Data ToolsMid-level Full TimeAustin, TX, USA; Atlanta, GA, USA19h ago
-
Cybersecurity Analyst USD 50KAccess Control | Authentication Protocols | Change Management | DNS | DNS Filtering401k match | Accident Supplemental Plan | Adoption Assistance | Company-provided life insurance | Dental insuranceMid-level Full TimeDearborn, MI, 48126, US20h ago
-
ArcGIS | Data Engineering | Data Pipelines | Data Science | Data Visualization401k | Health/Dental/VisionSenior-level Full TimeSpringfield, Virginia, United States1d ago
-
Senior-level Full TimeHouston, United States1d ago
-
Senior Cyber Threat Intelligence Analyst USD 96K-154KAnalytical Techniques | Automation | Cyber Threat | Cyber threat hunting | Diamond ModelHybrid work | No visa sponsorship | US Citizen or valid Green Card requiredSenior-level Full TimeUS OH CIN 8500, United States1d ago
-
Amazon Web Services | Cloud Security | Communications Security | Computer forensics | DNS401k match | Flex work week options | Medical, dental, vision benefits | Paid time offSenior-level Full TimeUSA VA McLean - Customer Proprietary …1d ago
-
AWS | Artificial Intelligence | Azure | Cloud Computing | Information security401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeUSA:NJ:Middletown / S Laurel Ave - …1d ago
-
Senior Director Analyst, IAM USD 172K-202KAccess Management | Authentication | Authorization | Authorization management | Bring Your Own Identity401k match | Company stock purchase discount | Generous paid time off | Hybrid work environmentSenior-level Full TimeIrving - 6011 Connection, United States R1d ago
-
Analyst, IT Security USD 70K-90KCase design | Compliance | Cybersecurity | Data Analysis | Data NormalizationHybrid workstyle | Paid time offMid-level Full TimeFL - Saint Petersburg - 880 …1d ago
-
Security Controls Assessor (SCA) Representative USD 160K-180K800-37 | Agile | Assessment and Authorization | Authorization to Operate | Body of EvidenceSenior-level Full TimeUSA, Colorado Springs, Peterson SFB, 1050 …1d ago
-
Access Control | Commissioning | Data Analysis | Electronic security | Electronic security systemsHybrid work | Nights and weekends work | Overtime available | Travel up to 30 percentSenior-level Full TimeCT - Berlin, 222 New Park …1d ago
-
Security Analyst (Detection and Incident Response) USD 95K-130KCloud Security | Elastic | Forensics | Host-Based Collection | Incident Response401k | Dental insurance | Disability insurance | Employee stock purchase plan | Life insuranceMid-level Full TimeHawthorne, CA1d ago
-
Cybersecurity | Endpoint protection | GRC | IT Security | Incident ResponseHybrid workMid-level Full TimeIrvine, CA, United States1d ago
-
Sr. Security Trust & Assurance Analyst USD 135K-198K800-53 | Application Security | Audit management | Awareness Training | CRISCHybrid work environment | Remote work option | Work-life balanceSenior-level Full TimeRaleigh, NC R1d ago
-
Senior Cyber Security Analyst (Tier II SOC Analyst) USD 70K-106KAnalytic Queries | Correlation rules | Dashboarding | Detection engineering | EDRMid-level Full TimeSan Antonio, TX, United States1d ago
-
Senior Cloud Security Specialist-API USD 135K-215K800-53 | API Integration | Access Management | Automation | CASBSenior-level Full TimeWashington, DC1d ago
-
Cloud Security Specialist-AWS USD 138K-226K800-53 | AWS Config | AWS Security | AWS Security Hub | AWS Well ArchitectedSenior-level Full TimeWashington, DC1d ago
-
Cybersecurity Analyst USD 140K-262K800-171 | Azure AD | Azure Policy | Azure Security | Azure Security CenterSenior-level Full TimeHouston, TX, United States1d ago
-
Sr. Network & Security Operations Analyst I (6574) USD 128K-168KAWS | ArcSight | Azure | Cybersecurity | Firewalls401k match | Company paid training and certifications | Dental insurance | Dependent care | Employee Assistance and Wellness ProgramsSenior-level Full TimeWashington, DC1d ago