Talent.com
CSOC Analyst II
CSOC Analyst IIPLANIT Group • Falls Church, VA, United States
CSOC Analyst II

CSOC Analyst II

PLANIT Group • Falls Church, VA, United States
1 day ago
Job type
  • Permanent
Job description

PlanIT Group is seeking a CSOC Analyst II to support our Federal customer in the Washington, DC area. The ideal candidate will be responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization's security posture

Job Title : CSOC Analyst II

Location : Remote

Duration : One year plus annual extensions

CSOC Analyst II

Key Responsibilities :

  • Identification of Cybersecurity problems which may require mitigating controls
  • Analyze network traffic to identify exploit or intrusion related attempts
  • Recommend detection mechanisms for exploit and or intrusion related attempts
  • Provide subject matter expertise on network-based attacks, network traffic analysis, and intrusion methodologies
  • Escalate items which require further investigation to other members of the Threat Management team
  • Execute operational processes in support of response efforts to identified security incidents
  • Responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization's security posture

Job responsibilities will include :

  • Participates in a team of Security operations engineers investigating alerts, anomalies, errors, intrusions, malware, etc. to identify the responsible, determine remediation, and recommend security improvements
  • Follows precise analytical paths to determine the nature and extent of problems being reported by tools, e-mails, etc
  • Follows strict guidance on reporting requirements
  • Keeps management informed with precise, unvarnished information about security posture and events
  • Promotes standards-based workflow both internally and in coordinating with CISA
  • Engages with other internal and external parties to get and share information to improve processes and security posture
  • Guide team efforts
  • Communicates to leadership
  • Leads analyzing / investigating reports or anomalies

    • Requirements :

  • Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance
  • Preferred 3+ years IT security experience
  • Preferred 2+ years' experience in network traffic analysis
  • Strong working knowledge of :
  • TCP / IP Fundamentals
  • Network Level Exploits
  • Excellent oral and written communication skills
  • Excellent interpersonal and organizational skills
  • Strong understanding of IDS / IPS technologies, trends, vendors, processes and methodologies
  • Strong understanding of common IDS / IPS architectures and implementations
  • Strong understanding of IDS / IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection
  • Azure and GCP O365 / Microsoft 365 experience required

    • Desired Skills :

  • Splunk experience, developing queries
  • Cloud monitoring experience
  • Excellent writing skills

    • Required Education :

  • Bachelor's OR Master's Degree in Computer Science, Information Systems, or other related field. Or equivalent work experience.

    • Certifications (one or more desired) :

  • Comp TIA Security+, CISSP, CISA, CISM, GIAC, RHCE.

    • Additional Provisions :

  • Must be able to obtain a Position of Public Trust Clearance
  • Pass both a client mandated clearance process to include drug screening, criminal history check and credit check.
  • All candidates must be a US Citizen or US Permanent Residents only
  • Candidate must have lived in the United States for the past 5 years.
  • Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)
    • Create a job alert for this search

    Analyst Ii • Falls Church, VA, United States

    Related jobs
    SOC Analyst II

    SOC Analyst II

    Foxhole Technology • Leesburg, VA, United States
    Full-time
    Job Title : SOC Analyst (Tier 2).Location : Leesburg, VA (Onsite).Shift : Day Team A- Sunday to Tuesday alternating every other Wednesday. Foxhole Technology provides robust cybersecurity and IT suppo...Show more
    Last updated: 8 hours ago • Promoted • New!
    Deputy IT Portfolio Analysis Lead

    Deputy IT Portfolio Analysis Lead

    E-talentnetwork • Arlington, VA, United States
    Full-time
    Job title : Portfolio Management Specialist.Location : Arlington VA (Hybrid 3 days on-site and 2 days remote).Telework : Authorized with agreement. Clearance : Active Secret or Higher.DITPR DON Manageme...Show more
    Last updated: 1 day ago • Promoted
    Consultant, Payment Intelligence

    Consultant, Payment Intelligence

    AArete • Vienna, VA, United States
    Full-time
    AArete is one-of-a-kind when it comes to consulting firm culture.We're a global, innovative management and technology consulting firm, with offices in the U. Our name comes from the Greek word for e...Show more
    Last updated: 30+ days ago • Promoted
    Cybersecurity Engineer (DHS)

    Cybersecurity Engineer (DHS)

    LMI Consulting, LLC • Tysons, VA, United States
    Full-time
    Salaried High Fringe / Full-Time.Department of Homeland Security (DHS) market.LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed.In...Show more
    Last updated: 30+ days ago • Promoted
    OSINT Analyst

    OSINT Analyst

    Native American Technology Corporation • Quantico, VA, United States
    Full-time
    In support of Marine Corps Intelligence Activity (MCIA), NATECH is recruiting for an Open Source Intelligence (OSINT) Analyst to conduct all-source analytic production on sources and products of in...Show more
    Last updated: 1 day ago • Promoted
    Access Developer

    Access Developer

    Tammina • Washington, DC, United States
    Full-time
    Seeking an independent MS Access and SharePoint developer to work onsite with one of our A / EX / ITS customers building customized MS Access applications, reporting, and SharePoint / .Must represent our...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Warfare Technician

    Cyber Warfare Technician

    U.S. Navy • Woodstock, MD, US
    Full-time +1
    To be eligible to enlist in the U.Navy, candidates must be between the ages of 18-34.As a Cryptologic Technician, you are one of the worlds greatest problem-solvers. Were looking for people with sha...Show more
    Last updated: 1 day ago • Promoted
    Transportation Data Scientist

    Transportation Data Scientist

    Leidos • Germantown, MD, US
    Full-time
    Are you interested in shaping the future of transportation? Consider joining the Leidos team operating.FHWA’s Saxton Transportation Operations Laboratory (STOL). USDOT research lab focused on ...Show more
    Last updated: 30+ days ago • Promoted
    Informatica IDQ

    Informatica IDQ

    Diverse Lynx • McLean, VA, United States
    Full-time
    Informatica Intelligent Cloud Services (IICS), a cloud-based ETL platform, ensuring seamless data flow and management across diverse data sources and environments. These roles require expertise in d...Show more
    Last updated: 30+ days ago • Promoted
    Senior Consultant, Payment Intelligence

    Senior Consultant, Payment Intelligence

    AArete • Vienna, VA, United States
    Full-time
    We're a global, innovative management and technology consulting firm, with offices in the U.Our name comes from the Greek word for excellence : ". And excellence is exactly what we strive for.Our suc...Show more
    Last updated: 30+ days ago • Promoted
    SOC Analyst

    SOC Analyst

    ALTA IT Services • Chantilly, VA, US
    Full-time
    SOC Analyst 100% remote Compensation : $70,000-75,000 Contractor Work Model : Remote Hours : (3) 12-hour shifts a week on consecutive days (though days may shift to ensure team coverage from time to t...Show more
    Last updated: 13 days ago • Promoted
    Offensive Cybersecurity Engineer

    Offensive Cybersecurity Engineer

    Viasat • Germantown, MD, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show more
    Last updated: 11 hours ago • Promoted • New!
    Software Engineer (TS / SCI)

    Software Engineer (TS / SCI)

    Vantor • Springfield, VA, US
    Permanent
    Vantor is forging the new frontier of spatial intelligence, helping decision makers and operators navigate what’s happening now and shape what’s coming next. Vantor is a place for problem solvers, c...Show more
    Last updated: 7 hours ago • Promoted • New!
    Guidewire Policy Developer

    Guidewire Policy Developer

    VirtualVocations • Rockville, Maryland, United States
    Full-time
    A company is looking for a Sr Guidewire Policy Developer.Key Responsibilities Design, develop, and configure Guidewire PolicyCenter components, including product models and business rules Implem...Show more
    Last updated: 6 days ago • Promoted
    Junior Cybersecurity Engineer - Top Secret

    Junior Cybersecurity Engineer - Top Secret

    VirtualVocations • Alexandria, Virginia, United States
    Full-time
    A company is looking for a Junior Cybersecurity Engineer (Top Secret).Key Responsibilities Deploy and integrate cybersecurity tools and technologies for mission-critical systems Troubleshoot and...Show more
    Last updated: 1 day ago • Promoted
    Cyber Engineer

    Cyber Engineer

    Leidos Inc • Reston, VA, United States
    Full-time
    The Mission Solutions Business Area at Leidos has an opening for a.Cyber Engineer in Reston, Virginia.The primary focus of the group is reverse engineering Weapons of Mass Destruction (WMD) related...Show more
    Last updated: 30+ days ago • Promoted
    Chief Cybersecurity Engineer

    Chief Cybersecurity Engineer

    KellyMitchell Group • Bethesda, MD, US
    Full-time
    Our client is seeking a Chief Cybersecurity Engineer to join their team! This position is located in Bethesda, Maryland.Serve as the principal cybersecurity engineer for enterprise systems, focusin...Show more
    Last updated: 23 hours ago • Promoted
    QA Associate - I

    QA Associate - I

    Spectraforce Technologies • Frederick, MD, United States
    Full-time
    Location - Frederick, MD 20678.Onsite; Sun to Wed - 7 : 00AM to 5 : 30PM.Provides clerical and administrative support related to documentation processes and systems. Creates logbooks and other control i...Show more
    Last updated: 22 days ago • Promoted