SOC Analyst (Secret Clearance)

Ignitec infuses industry standards and leading technology capabilities to solve complex problems and deliver value with increased quality and lower performance risks. Our solutions combine top technology personnel, the latest cutting-edge technology, and Agile approaches to bring innovative ideas to life. We do not seek to meet expectation, we continuously strive to exceed them.

We have received our MBE Certification from NMSDC as a certified Minority Small Business Enterprise. We take pride in the MBE certification and partner with organizations to meet their Minority (D&I) Small Business goals. We are also a certified Minority Business Enterprise by the USPAACC, which recently awarded Ignitec “The FAST 50 Asian American Business Award” in 2022. We are also DBE certified by the Virginia Department of SBSD.

• Job Title: SOC Analyst
• Location: Herndon, VA (on-site)
• US CITIZEN ONLY
• Active DoD Secret Clearance is REQUIRED

Requirements:

• 3 years of experience in security operations, demonstrating analytical duties and preforming host or network security analysis.
• Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages, system/application vulnerabilities, and compliance with Department of Defense (DoD) policies and procedures.
• Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH, SMTP, SMB), and experience with tools like Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center.
• Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and familiar with MITRE ATT&CK framework, with the ability to collaborate effectively across multiple locations.

Job Duties:

• Support SOC team in operating and performing duties in a Security Operations Center (SOC) to provide a secure environment that facilitates monitoring, incident response, malware analysis, and threat hunting activities.
• Develop and utilize analytics on the security information and event management (SIEM) platform to monitor for security alerts and coordinate vulnerability assessments and artifact collection across servers and network devices.
• Asses Security Technical Implementation Guides (STIGs) compliance and completion.
• Utilize asset mapping tools to verify connected inventory.
• Handle Information Assurance Vulnerability Management (IVAM) notifications.
• Evaluate network structures and device configurations for security risks, offering recommendations based on best practices, and gather data to identify and respond to network intrusions.
• Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited, and methods used, and develop processes to enhance SOC response and efficiency.
• Conduct comprehensive technical analyses of computer evidence, research and integrate new security tools into the SOC, and synthesize findings into reports for both technical and non-technical audiences.