Complete Description:
The Security Operations Center (SOC) ANALYST shall be responsible for the day-to-day activities required harden the security of District of Columbia Government (DCGOV) network. Working in a collaborative team environment, the ANALYST will work with stakeholders both internal and external to protect and defend the DCGOV network from intrusions. ANALYST will play a critical role in Incident Response information gathering efforts and shall support continuity of operations efforts for the District at all times. ANALYST shall work with key teammembers to ensure measures are in place to protect the Confidentiality, Integrity and Availability (CIA) of the DCGOV network.
The Security Operations Center ANALYST shall be responsible for the following, but not limited to:
• Identify events of interest and investigate them for signs of abuse or misuse
• Remote management of infected machines – alert, analyze and remediate infections remotely
• Review application, system, and network logs for evidence of malicious activity
• Support auditing performed by third parties as part of C&A efforts and/or managed services
• Support incident response activities
• Document and report monitoring and incident response activities on a daily, weekly, and monthly basis
• Ensure all operations tools and infrastructure is operating normally
• Train, mentor, and/or supervise junior analysts
• Shift-work assignment hours which will be based on typical rotating shifts to support security operations. Candidates should be flexible to rotating 8 hour shifts.
The ANALYST will consult with stakeholders and assist with improving processes that are aligned with the mission of the Officer of the Chief Technology Officer and will report to the Director of IT Security. ANALYST is expected to contribute to weekly status calls, trouble tickets, and adhoc requests as part of this position and will work to resolve or engage appropriate stakeholders/teammembers to remedy the request. ANALYST should recommend new security tools to management regarding new technologies and provide guidance on supplemental configurations to support the DCGOV network.
Behavior Characteristics:
The ANALYST will support 24/7 operations and will be part of an expanding team of highly technical professionals at the Office of the Chief Technology Officer
Skills:
Skill
Required / Desired
Amount
of Experience
Expertise Rating
Bachelors degree or equivalent experience in an IT Security field.
Highly desired
4
Years
3 - Expert
Experience related to supporting of enterprise anti-virus software, specifically McAfee ePolicy and remediation
Required
5
Years
3 - Expert
Experience in Cybersecurity Framework Analysis
Required
6
Years
2 - Proficient
Experience Threat, Vulnerability, and Risk Analysis
Required
6
Years
3 - Expert
Understanding of device control and access control for Windows and Linux Environments
Required
4
Years
3 - Expert
Experience with Remedy Systems for incident tracking and reporting
Required
6
Years
2 - Proficient
Experience provided Operational Security and Product reports
Required
6
Years
2 - Proficient