Tyto Athene is searching for a Security Operations Center Analyst to support the customer Enterprise Cybersecurity Operations Support Team responsible for protecting the information and assets within the customer’s information technology infrastructure, including sensitive data that directly supports the customer’s mission, national security and operational readiness.

The ideal candidate will have Security Operations Center experience and familiarity with managing systems in compliance with regulatory frameworks such as FISMA/NIST, to include DoD cybersecurity mandates and guidance. The SOC Analyst will be on the front lines of cyber defense-monitoring, detecting, investigating and responding to threats in real time, working in a fast-paced, collaborative environment where insights, actions and the ability to solve complex problems have immediate impact.    

Responsibilities:

• Monitor network and systems activity for security related incidents, assess threats, and report findings to the Information Systems Security Manager (ISSM).
• Utilize DoD mandated tools to assess the security posture of the network and connected systems.
• Evaluate new deployments or modification for compliance and risk.
• Manage Cybersecurity tools that support critical cyber security services, including network monitoring, host-based monitoring, event logging and correlation, and scanning tools (e.g., Splunk / Sentinel, Burp, ACAS).
• Collaborate with engineering and compliance teams to ensure systems meet Cybersecurity Vulnerability Management (IAVM) and DISA Vulnerability Disclosure Program (VDP) standards.
• Conduct cyber threat intelligence analysis, develop correlation techniques, correlate actionable cybersecurity events, participate in the coordination of resources during incident response efforts, and report and track incident findings and resolutions to customers that include trends, responses, and mitigation actions.
• Assess, plan, and enact measures including refinements to cybersecurity architecture, tools configurations, and detection signatures to help protect customers from security breaches and attacks on their computer networks and systems.

Required:

• One (1)+ years of relevant experience as a Systems Administrator.
• One (1)+ years of relevant experience in a Security Operations Center.
• Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, Zero Trust, and common security elements.
• Understanding of Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, and complex technical reports on analytic findings
• Experience using Assured Compliance Assessment (ACAS) suite of tools
• Knowledge of query language such as SPL (Splunk) or KQL (Sentinel).
• Understanding of malware analysis concepts and methods.
• Bachelor’s degree in Computer Science or related field
• DoD 8140 Compliant for IAT Level II or above: Possess a CASP+ CE, CCNA Security, CCNP Security, CCSP, CISA, CISSP (or Associate), CND, CySA+, GCED, GCIH, GICSP, GSEC, Security+ CE, or SSCP certification.
• DoD 8140 Compliant for CSSP Analyst: Obtain a CCNA Cyber Ops, CCNA-Security, CEH, CFR, Cloud+, CySA+, GCIA, GCIH, GICSP, PenTest+, or SCYBER certification within 6 months of start date.

Desired:

• Microsoft Security Operation Analyst Certification Preferred

Clearance: 

• Active Secret Clearance

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically between $110,000-$125,000. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Paid Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and parental leave.