Security Operations Center Analyst, Lead

The Challenge:

Are you ready to be the first line of cyber defense for the Department of Defense? Are you looking for an opportunity to protect critical infrastructure from the constant onslaught of cyber attacks? If you want to be in the middle of the action and build your skills by responding to threats real-time, you want to be a Tier 3 SOC analyst.

As an analyst on our SOC team, you’ll develop network defense skills as you learn to monitor, detect, and analyze threats by interacting directly with affected users and state-of-the-art tools. You’ll use your cyber security skills to:

  • Configure defense tools

  • Create reports and dashboards

  • Build custom queries

  • Make recommendations to harden infrastructure

  • Lead cyber incident response

When an incident is detected, you’ll work with the team to collect data to help incident response understand and mitigate the threat. You’ll analyze alerts to figure out just how many systems are affected and initiate recovery efforts. You’ll contribute to assessments and learn how to analyze patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to build your cyber security skills and learn more about threat assessment and incident response. Join us as we protect the DoD from malicious actors.

Empower change with us.

You Have:

  • 5+ years of experience with TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements

  • Knowledge of current information security threats, including distributed denial of service (DDoS), botnets, malware, advanced persistent threats, buffer overflows, SQL injection and phishing

  • Ability to obtain a security clearance

  • HS diploma or GED and 7+ years of experience an information security analyst or engineer, or Bachelor's degree

Nice If You Have:

  • 5+ years of experience with working on a computer incident response team, computer emergency response team, computer security incident response center or security operations center

  • 5+ years of experience with anti-virus software, HIPS/HBSS, IDS/IPS, full packet capture and network forensics

  • 5+ years of experience with translating complex technical reports into presentations and reports for executive-level leadership

  • Knowledge of malware analysis concepts and methods, Unix/Linux, scripting and programming

  • Secret clearance

  • Security certification including CompTIA Security+, Certified Penetration Testing Engineer (CPTE), Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), EC–Council Certified Incident Handler (ECIH), or Certified Information Systems Auditor (CISA)

Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

  • Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

  • Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

  • Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

  • Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

  • Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.