Cyber Defense Operations Analyst, Mid

The Challenge:

Are you ready to take an active role in cyber defense of network assets within the Federal Intelligence Community (IC)? Are you looking for an opportunity to protect critical infrastructure from the constant onslaught of cyber attacks? If you want to sharpen your skills by analyzing threats real-time, you want to be a Cyber Defense Operations Analyst.

As an analyst on our SOC team, you’ll monitor and analyze threats, using state-of-the-art tools like Splunk, ElK Stack, Cisco FirePower, FireEye (NX, EX, AX), McAfee ePolicy Orchestrator, Tanium, and Cylance . You’ll use your cyber security skills to:

  • Provide security monitoring and incident response services, in alignment with the mission to protect network assets (including Industrial Control Systems)

  • Act as internal expert on matters relating to intrusion detection and incident response

  • Support investigations into network intrusions and other cyber security breaches

  • Support a coordinated response to complex cyber-attacks that threaten assets, intellectual property, and computer systems

  • Contribute to the development and improvement of security monitoring and incident response processes and solutions as required to support our cyber security program. Operate security monitoring and incident response toolsets with a focus on continuous improvement

  • Research and recommend solutions for incident response and digital forensics

You’ll work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting the impact. You’ll analyze incidents to figure out just how many systems are affected and assist recovery efforts. You’ll combine threat intelligence, event data, and assessments from recent events, and identify patterns to understand attackers’ goals to stop them from succeeding. This is a great opportunity to build your cyber security skills with hands on experience in threat assessment and incident response. Join us as we protect our nation's infrastructure from malicious actors.

Empower change with us.

You Have:

  • 5+ years of experience with information security, including penetration testing, intrusion detection, incident response, or digital forensics

  • Experience with leading complex response activities with IT service departments

  • Experience with working in an enterprise team setting

  • Knowledge of Cybersecurity and overall IT architecture design and tools

  • Ability to troubleshoot an active security event from detection to containment and provide recommendations

  • Active Top Secret clearance

  • BA or BS degree


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.

Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.

Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.

Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.

Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.