Skip to main content
Full-time, Part-time
Seaside, CA 93955
Updated 3 days ago
Technical- Constant monitoring of intrusion detection systems using SIEM tools
Performing independent research and analysis of security threats
Coordinating with other teams to analyze, investigate and remediate detected incidents
Analyzing and evaluating anomalous network and system activity
Recommending modifications to security tools to better detect, prevent, and mitigate intrusions
Knowledge of computer network defense and vulnerability assessment tools, including open source tools, and their capabilities
Monitoring event alerts and performing Tier 2 categorization of suspicious activity, escalating as appropriate
Investigating anomalous, suspicious, or malicious log entries or alerts
Conducting security event collection using log management tools, initiate event management, and leverage identity monitoring activities
Knowledge and understanding of networking, network layers, protocols, devices and multiple operating systems
Performing network/system/application/log intrusion detection analysis and trending
Developing dashboards and reports for IA management and system monitoring The ArcSight Analyst will use various tools to perform Tier 2 review of events, escalate incidents as warranted and assist the Incident Response/HBSS/ACAS teams in responding to alerts and cybersecurity investigations. Required Skills- BS in Computer Science or combination of experience, education and/or certifications
2+ years of experience
Contractual Requirements: Bachelor’s degree or equivalent experience
IAT Level III Baseline Certification (one of the following):
CASP+ CE
Security+
CCNP Security
CISA
CISSP (or Associate)
GCED
GCIH
Must be a US citizen and have a Secret clearance with SSBI/T5 able to obtain Top Secret
Excellent communication, analytical, and troubleshooting skills Desired Skills: Well-rounded skillset with experience in various computer environments and multiple toolsets for cross-training within the DMDC environment
SIEM experience (ArcSight preferred, HBSS, ACAS)
TS/SCI Eligible
Technical writing and organizational skills
Posting ID: 602928644 Posted: 2021-12-06 Job Title: Siem Analyst Security Clearance