This site uses cookies. To find out more, see our Cookies Policy

Security Operations Center Analyst, Mid in Fort Bragg, NC at Booz Allen Hamilton Inc.

Date Posted: 3/13/2019

Job Snapshot

Job Description

Job Number: R0042021

Security Operations Center Analyst, Mid

The Challenge:

Are you ready to be the first line of Cyber defense for a client? Are you looking for an opportunity to protect critical infrastructure from the constant onslaught of Cyber attacks? If you want to be in the middle of the action and build your skills by responding to threats real-time, you want to be a Tier 1 Security Operation Center (SOC) analyst.

As an analyst on our SOC team, you’ll develop network defense skills as you learn to monitor, detect, and analyze threats by interacting directly with affected users and state-of-the-art tools HBSS, Splunk, ESM, NSM, Netflows, IDS, StealthWatch, and ForeScout. You’ll use your Cybersecurity skills to:

  • Provide SOC Analyst Tier I functions of continuously monitoring the alert queues, triaging security alerts, monitoring the health of security sensors and endpoints, and collecting the data and context necessary to initiate Tier 2 incident response
  • Review alerts to determine relevancy and urgency and communicate alerts to agencies regarding intrusions to the network's infrastructure, applications, and operating systems
  • Create trouble tickets for alerts that signal an incident and require Tier 2 and incident response review and collaborate with other teams to assess risk and develop improvement strategies for security posture
  • Run vulnerability scans and reviews vulnerability assessment reports
  • Manage and configure security monitoring tools, including HBSS, Splunk, ESM, NSM, Netflows, IDS, StealthWatch, ForeScout, and correlation rules
  • Monitor and analyze security information and event management SIEM for remediation of security issues as well as analyze work traffic, Intrusion Detection Systems (IDS), security events, and logs
  • Prioritize and differentiate between potential intrusion attempts and false alarms and create and track security investigations to resolution
  • Advise incident responders in the steps to take to investigate and resolve computer security incidents

When an incident is detected, you’ll work with the team to collect data to help incident response understand and mitigate the threat. You’ll analyze alerts to figure out just how many systems are affected and initiate recovery efforts. You’ll contribute to assessments and learn how to analyze patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to build your Cybersecurity skills and learn more about threat assessment and incident response. Join us as we protect our client from malicious actors.

Empower change with us.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen Cyber. When you join Booz Allen, we’ll help you develop the career you want.

Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

You Have:

-1 year of experience as an information assurance (IA) specialist

-Experience with vulnerability scans

-Experience with monitoring tools, IE, HBSS, Splunk, ESM, and NSM

-Ability to obtain a security clearance

-BS degree or 4 years of experience with IA

-8570 Level I Certification, including Security+ CE

Nice If You Have:

-Active TS/SCI clearance preferred

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.


Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.

Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.