CSOC-Tier 3 Analyst

Job Title: CSOC-Tier 3 Analyst

Duration: 1+ yr.

Location work will be performed: Morrisville NC 27560

Job Description:

Key Responsibilities:

Identification of Cybersecurity problems which may require mitigating controls

Analyze network traffic to identify exploit or intrusion related attempts

Recommend detection mechanisms for exploit and or intrusion related attempts

Provide subject matter expertise on network based attacks, network traffic analysis, and intrusion methodologies

Analyze attachments and URLs for malicious code

Conduct forensic analysis on systems which may have been compromised

Work with law enforcement if needed for handoff of forensic evidence

Execute operational processes in support of response efforts to identified security incidents

Qualifications Requests:

3+ years IT security experience

2+ years' experience in network traffic analysis

Strong working knowledge of:

Boolean Logic

TCP/IP Fundamentals

Network Level Exploits

Threat Management

Regular Expressions

Knowledge of Control Frameworks and Risk Management techniques

Excellent oral and written communication skills

Excellent interpersonal and organizational skills

Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies

Strong understanding of common IDS/IPS architectures and implementations

Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection

EXPERIENCE LEVEL:

3-5 years of related experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).

EDUCATION:

Bachelors Degree in Computer Science, Information Technology or Information Security preferred or a technically related field OR equivalent related work experience

CERTIFICATIONS: (One or more desired)

CompTIA Security +

CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker

GCIH - (GIAC Certified Incident Handler) or ECIH - (EC-Council Certified Incident Handler)

CISA - Certified Information Systems Auditor

Regards,

Pawan Kumar
Direct: (703) 652-7852 | Pawan.k@inficaretech.com