Senior Security Analyst SME (Remote)
Remote
Applications have closed
Novetta
Accenture is committed to solutions that improve outcomes, enabling a National Security posture that’s ready, intelligent and empowered. Learn more.Job Description:
We are seeking an expert-level Cyber Security Analyst to help keep our networks secure. You will be part of a (quickly growing) 5 man cyber-security team, so be prepared to learn something new every day, and chip in anywhere you’re needed. You will have the opportunity to expand your skills too many areas of cyber security.
Responsibilities include:
-
As Novetta’s Senior Security Analyst, you will be a subject matter expert on the frontlines, performing and improving security analysis, incident response, and forensics across the enterprise network. You will use your experience and expertise to create and investigate alerts within the SIEM, paving the way for and eventually training future analysts and incident responders.
-
This position requires someone with expert-level security analyst experience, including knowledge of APT threat hunting techniques, and will focus heavily on pro-actively finding and investigating active threats within the network. The senior security analyst SME will also create and document repeatable incident response processes for both internal and cyber protection team use.
-
In this position, creativity and out of the box thinking are rewarded…you will have the opportunity to really make a difference. The position can be 100% remote, or on-site. We have casual dress requirements, flexible hours, and foster a startup-type environment.
Basic Qualifications:
- BA/BS/MS degree in Information Technology or equivalent IT experience.
- 6+ years professional Cybersecurity technical experience.
- 3+ years Security Operations Center analyst experience.
Expert-level:
- Proficiency with SIEM platforms as an analyst and administrator
- Proficiency in cyber threat monitoring, triaging, and investigating
- Experience in SIEM data analytics and correlation rule creation
- Experience in CIRT playbook development
- Proficiency in Wireshark, TCPDUMP, and PCAP analysis
- Troubleshooting and critical-thinking abilities
- Experience with Autopsy, EnCase, CAINE, or similar forensics tools
- Knowledge of exploits, vulnerabilities, and cyber attacks
- Knowledge of forensic and threat hunting within Windows, Linux, and Mac
- Knowledge of malware families and network attack vectors
- Knowledge of adversary Tactics, Techniques and Procedures (TTPs)
- Knowledge of Windows & Unix based operating systems and administrative tools, windows disk and memory forensic, Unix or Linux disk and memory forensics and Static and dynamic malware analysis
- Knowledge of NIST-171
- Troubleshooting, communication, and interpersonal skills
Intermediate-level:
- Experience with various intrusion detection devices and sensors such as Snort, Suricata and Zeek
- Experience writing custom detection signatures
- Experience determining and proactively monitoring for IOCs
- Experience with host-level log collection and forwarding tools such as WEF, Beats, Sysmon, and Microsoft ATA
- Experience with Python, PowerShell, and other scripting languages
- Experience with Firewalls, Intrusion Detection Systems, Antivirus Systems, Proxy, SIEM, and Mail Gateways
- Knowledge in Cloud Technologies - AWS\Azure\Google\VMware
- Knowledge of how Group Policy and DISA STIGs operate
Desired Skills:
- Cybersecurity Certifications - SEC+, CEH, CSTA, CISSP, OSCP, MSE, WGCIH, GCFA, GCFE, GNFA, GREM, etc.
Security Clearance:
- Must be eligible to obtain a U.S government security clearance.
Novetta, from complexity to clarity.
Novetta delivers highly scalable advanced analytics and secure technology solutions to address challenges of national and global significance. Focused on mission success, Novetta pioneers disruptive technologies in machine learning, data analytics, full-spectrum cyber, cloud engineering, open source analytics, and multi-INT fusion for Defense, Intelligence Community, and Federal Law Enforcement customers. Novetta is headquartered in McLean, VA with over 1,300 employees across the U.S.
Our culture is shaped by a commitment to our core values:
Integrity • We hold ourselves accountable to the highest standards of integrity and ethics.
Customer Success • We strive daily to exceed expectations and achieve customer mission success.
Employee Focus • We invest in our employees’ professional development and training, respecting individuality, and fostering a culture of diversity and inclusion.
Innovation • We know that discovering new and innovative ways to solve problems is critical to our success and makes us a great company.
Excellence in Execution • We take pride in flawless execution as we build a company that is best in class.
Earn a REFERRAL BONUS for the qualified people you know.
For more details or to submit a referral, visit bit.ly/NovettaReferrals.
Novetta is an equal opportunity/affirmative action employer.
All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
Tags: Analytics APT AWS Azure CEH CISSP Clearance Cloud Exploits Firewalls Forensics GCFA GNFA GREM Incident response Intrusion detection Linux Machine Learning Malware Monitoring NIST Open Source OSCP PCAP PowerShell Python Scripting Security analysis Security Clearance SIEM Snort TTPs UNIX VMware Vulnerabilities Windows
Perks/benefits: Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs