SOC Analyst with Secret Clearance

About Coalfire

Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers.  Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships with leading cloud and technology providers including Amazon, Microsoft, IBM, Google and Oracle and Federal agencies.  Coalfire has been a cybersecurity thought leader for over 20 years and has offices throughout the United States and Europe and is committed to making the world a safer place by solving our clients’ toughest security challenges. 

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.  

We’re currently seeking a SOC Analyst with an Active Secret Clearance to support our on-site team in the Crystal City / Arlington, VA area.

Location & Summary

This is an opportunity join our Coalfire Federal team, supporting a government client on site on a full time basis. The SOC Analyst will be responsible for assisting with the vulnerability management program and maintaining the vulnerability scanning tool, conducting incident response to include contributing to process improvement, and assist with monitoring existing alerts and security dashboards

What you'll do

• Monitor security operations in a mixed Windows and Linux environment across multiple enclaves
• Conduct infrequent digital forensics and contribute to process development
• Assist with detection development and testing using publicly posted information and tools such as Atomic Red Team
• Operate endpoint detection and response tools including managing exceptions and alerts
• Incorporate threat intelligence into incident response through tools such as Yara scanning
• Assist with audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews.
• Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets.
• Ensures quality products and services are delivered on time.
• Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue
• Develop strong working relationships across the IT program to facilitate smooth operations and incident response activities

What you'll bring

• The ability to support and be flexible with a small team, and work independently as needed with interest to learning and growing into the role
• Expertise in security operations and vulnerability management
• Maintains strong depth of knowledge in one or more cybersecurity frameworks.
• Familiarity with Department of Defense STIGs and standard operating procedures associated with operating an air-gapped network
• Understanding of Windows infrastructure and communication components
• Basic understanding of Linux
• Familiarity with web applications and awareness of web application vulnerability assessments

Education 

Completed Bachelor’s degree from an accredited university, preferably in an IT related field.

Clearance / Suitability 

At minimum an active Clearance and on-site presence is required for this role.

Certifications 

At least one industry recognized cybersecurity /information security certification, such as Security+, CEH, or GCIH

 Years of Experience 

At least Five (5) years’ related experience providing support to implementing an organization’s information security program and related SOC experience

Bonus Points

• Cyber Engineering background
• Splunk experience and / or certification
• ACAS, Nessus, or Tenable training
• Familiarity with an Endpoint Detection and Response tool such as HBSS, Carbon Black, or Cylance Optics
• Familiarity with a Network Based Intrusion Detection system
• Familiarity with the Purple Team Lifecycle and continuous process improvement

Why you'll want to join us

Our people make Coalfire Federal great. We work together on interesting things and achieve exceptional results. We act as trusted advisors to our customers and are committed to client-focused innovation as well as innovation in the industries that we serve.

Coalfire offers our people the chance to grow professionally with colleagues they like and respect while tackling challenges that stretch their minds and expand their skill sets. Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more.

You’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support memberships, and comprehensive insurance options.  

Coalfire is an EEO employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.