Security Analyst II- Alexandria, VA (HYBRID)
Arlington, Virginia
Hybrid
Full Time
$130k - $148k
Security Analyst II
The Senior Security Analyst II is responsible for the design, configuration, testing, and deployment of on-prem and cloud services. They will provide Incident Response, threat hunting and proactive support of all development activities in both the cloud and on-prem environments.
This position will be 2 days on site their Alexandria, VA office.
What You Will Be Doing:
Required Skills & Experience:
Desired Skills & Experience:
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.
The Senior Security Analyst II is responsible for the design, configuration, testing, and deployment of on-prem and cloud services. They will provide Incident Response, threat hunting and proactive support of all development activities in both the cloud and on-prem environments.
This position will be 2 days on site their Alexandria, VA office.
What You Will Be Doing:
- Ensuring anomalous activity is detected and the potential impact of events is understood.
- Ensuring that information systems and assets are monitored to identify cybersecurity events and verify the effectiveness of protective measures.
- Ensuring detection processes and procedures are maintained and tested to ensure awareness of anomalous events.
- Ensuring response activities are coordinated with internal and external stakeholders (e.g., external support from service providers).
- Ensuring analysis is conducted to ensure effective response and support recovery activities.
- Ensuring activities are performed to prevent expansion of an event, mitigate its effects, and resolve the incident.
- Ensuring response processes and procedures are executed and maintained, to ensure response to detected cybersecurity incidents.
- Ensuring recovery processes and procedures are executed and maintained to ensure restoration of systems or assets affected by cybersecurity incidents.
- Ensuring recovery planning and processes are improved by incorporating lessons learned into future activities.
- Ensuring restoration activities are coordinated with internal and external parties (e.g. coordinating centers, other CSIRTs, and vendors).
- Additional activities as necessary to support the overall cybersecurity and PBS mission.
Required Skills & Experience:
- Minimum of 3 years’ experience working as a systems engineer or administrator.
- Minimum of 4 years’ experience working as a security analyst.
- Minimum of 5 years’ cybersecurity experience.
- GCIH, GCIA, GMON, GCED, or equivalent GIAC defense focused certifications desired.
- Certifications by EC-Council, ISC2, Cisco, Microsoft, Fortinet, CompTIA, Offensive Security, etc. to be considered based on relevance to defensive cybersecurity operations.
- Bachelor’s Degree in a related field such as cybersecurity, information technology, or computer science; equivalent combination of experience may be considered.
Desired Skills & Experience:
- Expert knowledge in the following technologies and concepts: DFIR, IAM, PAM, DLP, NGFW, EDR, SIEM, IDS/IPS.
- Strong foundational knowledge in IT technologies and concepts not limited to email security technologies, application security, cloud security (IaaS & PaaS, etc.), MITRE ATT&CK, SIEM, SOAR, CASB, MSSPs, DNS, Linux, Windows.
- Fundamental knowledge of NIST, MDM, OWASP, PowerShell/Python/JavaScript, MacOS, malware analysis, LOLBAS, vulnerability management, WAF, CIS Benchmarks.
Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn’t provide sponsorship.