SOC Analyst III

Provide Tier 3 analysis and respond to security events and incidents from SIEM, Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Network Access Control (NAC) and other client data sources. This is a customer facing role, and will require excellent analytic and communication skills, delegation, and shared ownership of team processes. Will also provide mentoring to Tier 1 & 2 analysts and be lead for shift (supervising Tier 1s).

Required Experience:
• 3-5 years of security operations center environment, including demonstrated team leadership.
• Experience with a variety of operating systems including Windows, Linux or UNIX in a functional capacity
• Excellent written and verbal communication skills required. Must be able to communicate technical details clearly
• Splunk or similar SIEM tool, CrowdStrike
• Must be able to obtain and maintain the required agency clearance

Preferred Experience:
• CSIS, CEH, CSTA, CSTP, GCFE, CISSP, GCIH, GCIA, GPEN. - One or more preferred
• IDS Log analysis skills
• Packet Capture tools and analysis
• Knowledge of well-known protocols and services (FTP, HTTP, SSH, SMB, DAP)
• Military and/or prior U.S. Government support experience preferred but not required.