... platforms (Splunk, ArcSight, Microsoft Sentinel) * Manage cyber security incident response ... Cyber Defensive Analyst (Advanced) Playlist and CySA+ (or equivalent per 511 A) * Computing ...
... platforms (Splunk, ArcSight, Microsoft Sentinel) * Manage cyber security incident response ... Cyber Defensive Analyst (Advanced) Playlist and CySA+ (or equivalent per 511 A) * Computing ...
... platforms (Splunk, ArcSight, Microsoft Sentinel) * Manage cyber security incident response ... Cyber Defensive Analyst (Advanced) Playlist and CySA+ (or equivalent per 511 A) * Computing ...
... platforms (Splunk, ArcSight, Microsoft Sentinel) * Manage cyber security incident response ... Cyber Defensive Analyst (Advanced) Playlist and CySA+ (or equivalent per 511 A) * Computing ...
Cybersecurity Operator III
Indianapolis, IN · On-site
Tuition assistance program The Cybersecurity Operator plays a key role in Security Incident ... OffSec Defense Analyst (OSDA) * OffSec Certified Professional (OSCP) * CompTIA Security+ * CySA+
New
Cybersecurity Operator III
Indianapolis, IN · On-site
Tuition assistance program The Cybersecurity Operator plays a key role in Security Incident ... OffSec Defense Analyst (OSDA) * OffSec Certified Professional (OSCP) * CompTIA Security+ * CySA+
New
Conducts network\system defense analysis and provides recommendations for improvements. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best ...
Conducts network\system defense analysis and provides recommendations for improvements. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best ...
Cybersecurity Analyst
Goshen, IN · On-site
Conducts network\system defense analysis and provides recommendations for improvements. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best ...
Cybersecurity Analyst
Goshen, IN · On-site
Conducts network\system defense analysis and provides recommendations for improvements. Develops and maintains thorough, up-to-date knowledge of cybersecurity threats and incident response best ...
... cybersecurity/SOC analyst experience * CySA+ certification demonstrating advanced defensive ... Expert-level SIEM analysis (Azure Sentinel, ArcSight, Splunk) * Experience with threat hunting and ...
... cybersecurity/SOC analyst experience * CySA+ certification demonstrating advanced defensive ... Expert-level SIEM analysis (Azure Sentinel, ArcSight, Splunk) * Experience with threat hunting and ...
... cybersecurity/SOC analyst experience * CySA+ certification demonstrating advanced defensive ... Expert-level SIEM analysis (Azure Sentinel, ArcSight, Splunk) * Experience with threat hunting and ...
... cybersecurity/SOC analyst experience * CySA+ certification demonstrating advanced defensive ... Expert-level SIEM analysis (Azure Sentinel, ArcSight, Splunk) * Experience with threat hunting and ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Director II, Cybersecurity: Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 days per week, fostering collaboration ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Cyber Defense & Security Analytics Director II, Cybersecurity: Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 days per week, fostering collaboration ...
Cybersecurity Operator III
Indianapolis, IN · On-site
$95K - $123K/yr
Tuition assistance program The Cybersecurity Operator plays a key role in Security Incident ... OffSec Defense Analyst (OSDA) * OffSec Certified Professional (OSCP) * CompTIA Security+ * CySA+
New
Cybersecurity Operator III
Indianapolis, IN · On-site
$95K - $123K/yr
Tuition assistance program The Cybersecurity Operator plays a key role in Security Incident ... OffSec Defense Analyst (OSDA) * OffSec Certified Professional (OSCP) * CompTIA Security+ * CySA+
New
... cybersecurity/SOC analyst experience * Security+ certification * DoD 8140 Cyber Defensive Analyst (Intermediate) Playlist qualification * Experience with SIEM tools (Azure Sentinel, ArcSight, Splunk)
... cybersecurity/SOC analyst experience * Security+ certification * DoD 8140 Cyber Defensive Analyst (Intermediate) Playlist qualification * Experience with SIEM tools (Azure Sentinel, ArcSight, Splunk)
... cybersecurity/SOC analyst experience * Security+ certification * DoD 8140 Cyber Defensive Analyst (Intermediate) Playlist qualification * Experience with SIEM tools (Azure Sentinel, ArcSight, Splunk)
... cybersecurity/SOC analyst experience * Security+ certification * DoD 8140 Cyber Defensive Analyst (Intermediate) Playlist qualification * Experience with SIEM tools (Azure Sentinel, ArcSight, Splunk)
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Director II, Cybersecurity: Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 days per week, fostering collaboration and connectivity, while providing ...
Director II, Cybersecurity: Cyber Defense & Security Analytics
Indianapolis, IN · Hybrid
$106K - $143K/yr
Director II, Cybersecurity: Cyber Defense & Security Analytics Location: This role requires the associate to be in-office 3 days per week, fostering collaboration and connectivity, while providing ...
Description & Requirements Shape the future of defense with MANTECH! Join a team dedicated to ... Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career ...
Description & Requirements Shape the future of defense with MANTECH! Join a team dedicated to ... Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career ...
Cyber Security Analyst
Crane, IN · On-site
Since 1968, we've been a trusted partner to the Department of Defense, delivering cutting-edge projects that make a real impact. Dive into exciting opportunities in Cybersecurity, IT, Data Analytics ...
Cyber Security Analyst
Crane, IN · On-site
Since 1968, we've been a trusted partner to the Department of Defense, delivering cutting-edge projects that make a real impact. Dive into exciting opportunities in Cybersecurity, IT, Data Analytics ...
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Quick apply
Splunk SIEM Engineer
Crane, IN · On-site
... cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane ... Build dashboards and visualizations for operational awareness and trend analysis * Monitor overall ...
Cyber Security Analyst
Indianapolis, IN · On-site
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Cyber Security Analyst
Indianapolis, IN · On-site
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Cyber Security Analyst
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Cyber Security Analyst
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Cyber Security Analyst
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Cyber Security Analyst
$69K - $158K/yr
Cyber Security Analyst The Opportunity: As a security operations center analyst, you're in the ... You're the first line of cyber defense for your organization, and they look to you for guidance on ...
Splunk Cybersecurity Defense Analyst information
How does a Splunk Cybersecurity Defense Analyst typically collaborate with other IT and security teams?
What are Splunk Cybersecurity Defense Analysts?
What are the key skills and qualifications needed to thrive as a Splunk Cybersecurity Defense Analyst, and why are they important?
What is the difference between Splunk Cybersecurity Defense Analyst vs Security Operations Center (SOC) Analyst?
| Aspect | Splunk Cybersecurity Defense Analyst | Security Operations Center (SOC) Analyst |
|---|---|---|
| Certifications | Splunk certifications, CompTIA Security+ | CompTIA Security+, GIAC certifications |
| Work Environment | Primarily uses Splunk platform for data analysis | Monitors security alerts across various tools in a SOC |
| Industry Usage | Financial, healthcare, tech sectors leveraging Splunk | Broadly in all sectors with security teams |
| Job Focus | Analyzing security data with Splunk, threat detection | Monitoring, incident response, alert management |
While both roles focus on cybersecurity, the Splunk Cybersecurity Defense Analyst specializes in using Splunk for data analysis and threat detection, whereas the SOC Analyst performs broader security monitoring and incident response across multiple tools. The roles often overlap but differ in platform focus and scope of responsibilities.
- Cyber Security Analyst Contract
- Flexible Cyber Defense Analyst
- Night Shift Cyber Threat Intelligence Analyst
- Volunteer Cyber Security Analyst
- Weekend Vulnerability Analyst
- Freelance Cyber Threat Intelligence Analyst
- Manager Cyber Crime Analyst
- Senior Cyber Threat Intelligence Analyst
- Senior Cyber Security Analyst
- Remote Vulnerability Analyst
Full-time
Re-posted 28 days ago
Job description
Overview of position:
FEDITC seeks a CSSP Analysis Team Lead to work in the Indianapolis IN area, to direct 24/7 cybersecurity analysis, threat monitoring, and incident response operations for the DFAS Cybersecurity Service Provider (CSSP) program. This position provides subject matter expertise in security event correlation, threat intelligence, and incident handling across all DFAS CCE enclaves including unclassified and classified networks.
An active Top Secret/SCI security clearance and a United States Citizenship is required to be considered for this position.
On-site presence required at designated location
Responsibilities
- Lead and supervise CSSP Analysis staff delivering 24/7 security event monitoring, analysis, and incident response
- Direct real-time security event correlation, threat detection, and analysis using SIEM platforms (Splunk, ArcSight, Microsoft Sentinel)
- Manage cyber security incident response including detection, containment, eradication, and recovery operations
- Oversee threat intelligence integration, indicator of compromise (IOC) analysis, and threat hunting activities
- Coordinate internal and external incident reporting per JFHQ-DODIN, Cyber Command, and DFAS requirements
- Lead audit support, security assessments, and compliance validation activities
- Direct vulnerability analysis, penetration testing coordination, and remediation tracking
- Develop and maintain incident response plans, playbooks, and analysis procedures
- Support CSSP program operations including accreditation documentation and scoring metric compliance
- Coordinate with DFAS ISSM, security teams, and external stakeholders on security incidents and finding
- Ensure 100% compliance with DoD CSSP Evaluators Scoring Metrics and reporting requirements
Required Experience/Skills:
- Minimum 10 years of cybersecurity analysis experience in DoD or Federal environments with increasing responsibility
- Expert-level knowledge of security event analysis, threat correlation, and incident response methodologies
- Demonstrated expertise with enterprise SIEM platforms (Splunk, ArcSight, Microsoft Sentinel)
- Experience with cyber incident handling per NIST 800-61 and DoD incident reporting requirements
- Strong knowledge of threat intelligence, malware analysis, and forensic investigation techniques
- Experience with vulnerability management programs (ACAS, Nessus) and penetration testing
- In-depth understanding of NIST 800-53, DISA STIGs, and DoD cybersecurity frameworks
- Knowledge of DoD CSSP requirements, evaluations, and JFHQ-DODIN reporting
- Proven ability to lead security analysis teams in high-pressure 24/7 operational environments
- Ability to support COOP exercises and emergency operations
Preferred Qualifications:
- GIAC certifications (GCIA, GCIH, GCFA, GNFA)
- SANS DFIR certifications or equivalent
- Experience with classified network (JWICS) security operations
- Splunk Certified Security Analyst or equivalent
- Experience leading threat hunting programs
- DFAS or DoD financial system security operations experience
Certifications:
- Cyber Defensive Analyst (Advanced) Playlist and CySA+ (or equivalent per 511 A)
- Computing Environment (CE) certification required for privileged access roles
- Must obtain and maintain all mandatory DoD 8140 certifications
Education:
- BA/BS Degree
Clearance:
- Active Top Secret/ SCI clearance is required.
- Must be a United States Citizen and pass a background check.
- Maintain applicable security clearance(s) at the level required by the client and/or applicable certification(s) as requested by FEDITC and/or required by FEDITC'S Client(s)/Customer(s)/Prime contractor(s).
FEDITC, LLC. is committed to fostering an inclusive workplace and provides equal employment opportunities (EEO) to all employees and applicants for employment. We do not employ AI tools in our decision-making processes. Regardless of race, color, religion, sex (including pregnancy), sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran, FEDITC, LLC. ensures that all employment decisions are made in accordance with applicable federal, state, and local laws. Our commitment to non-discrimination in employment extends to every location in which our company operates.