Senior SOC Analyst

In a world of possibilities, pursue one with endless opportunities. Imagine Next!

When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with exceptional people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next, right now. We've got what you're looking for.

Job Description :

Parsons is looking for an amazingly talented Senior SOC Analyst to join our team! In this role, you will study the company's current computer systems and design ways to improve efficiency and the overall security posture protecting Parsons from internal threats and external adversaries. While the focus of this job is the corporate network, this role may occasionally contribute to the security of classified environments.

What You'll Be Doing :

Perform incident triage to include determining scope, urgency, and potential impact , and incident response actions to mitigate immediate / potential threats.

Receive cases from the DETECT team and perform deep-dive investigations to determine root cause.

Work with IT and other units as needed to resolve Incidents, acquire necessary details, and ensure the Incident has been documented appropriately

Produce status updates on all open Incidents and Post-Mortem Reports as required

Remotely access machines to conduct malware eradication and remove unauthorized software

Correlate Incident data to identify specific risks and make mitigation recommendations

Monitor external data sources (e.g., vendor sites, US-CERT) to maintain knowledge of threat condition and evaluate security issues that may have an impact on the enterprise

Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and Intrusion Detection System [IDS] logs) to identify possible threats to network security

Perform forensically sound collection / storage of digital evidence and maintain chain of custody

Perform real-time Incident handling (e.g., forensic collections, intrusion correlation / tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Process

Track and document Incidents from initial detection through final resolution

Write and publish Incident reports and recommendations for senior leadership

Author SOC documentation including reports, procedures, policies, and playbooks

Contribute to weekly / monthly / annual cybersecurity briefings

Serve as technical expert and liaison to law enforcement personnel and explain Incident details as required

Teach and mentor security apprentices in RESPOND skills

Special Projects - Other duties as assigned by Supervisor

Performs other responsibilities associated with this position as may be appropriate

Experience creating consumable and relevant security reports from large amounts of data

What Required Skills You'll Bring :

Bachelor's Degree in Computer Security, Computer Science, or another closely related IT discipline preferred (or equivalent experience)

8+ years (minimum of five years) in cyber security analysis or Incident Response in a Security Operations Center (SOC) or Computer Emergency Response Team (CERT) environment

Advanced knowledge of operating in a SOC / CERT environment, knowledge of attacker methodology and penetration testing concepts, operating systems and system administration, enterprise environments, networking and network security.

Advanced knowledge of scripting languages and syntax and of TCP / IP networking and network protocols

Skilled in Incident Response actions such as system containment / isolation, eradication of threats from the environment, and restoration of business assets analyzing. Correlating information from multiple sources to determine event / incident root cause, scope, and impact.

Experience with computer intrusion methodology and utilizing specialized analysis / investigation methodology, including forensic tools to acquire and examine evidence.

Real-time network monitoring using Security Information and Event Management (SIEM) and Raw packet analysis (PCAP) and security appliances (Intrusion Detection System, Intrusion Prevention System, Firewalls, Proxies, etc.) to include how the devices work and associated limitations

Understanding variety of network defense / monitoring tools in the context of an analyst

Licenses and Certifications :

CISSP Certified Information Systems Security Professional Preferred

CompTIA Advanced Security Practitioner (CASP) Preferred

Security Clearance Requirement :

None

This position is part of our Corporate team.

For over 80 years, Parsons Corporation, has shaped the future of the defense, intelligence, and critical infrastructure markets. Our employees work in a close-knit team environment to find new, innovative ways to deliver smart solutions that are used and valued by customers around the world. By combining unique technologies with deep domain expertise across cybersecurity, missile defense, space, connected infrastructure, transportation, smart cities, and more, we're providing tomorrow's solutions today.

Salary Range : $100,900.00 - $176,600.00

We value our employees and want our employees to take care of their overall wellbeing, which is why we offer best-in-class benefits such as medical, dental, vision, paid time off, Employee Stock Ownership Plan (ESOP), 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle!

This position will be posted for a minimum of 3 days and will continue to be posted for an average of 30 days until a qualified applicant is selected or the position has been cancelled.

Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status.

We truly invest and care about our employee's wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the Parsons quest-APPLY TODAY!

Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to .

About Us

Parsons is a digitally enabled solutions provider focused on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber / converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government agencies, as well as to private industrial customers worldwide.

Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority / Female / Disabled / Protected Veteran / LGBTQ+.

For more about Parsons, visit parsons.com and follow us on Facebook, Twitter, LinkedIn, and YouTube.