Security (SOC) Analyst, Secret Clearance Required at UltraViolet Cyber

Herndon, Virginia, United States

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, GovernmentIndustries

Requirements

Active US Secret Security Clearance
3+ years of experience working in a Security Operations Center (SOC) or Network Operations Center (NOC) environment performing security event monitoring and analysis
Working knowledge of various operating systems (e.g., Windows, OS X, Linux) commonly deployed in enterprise networks
Working knowledge of network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS) and common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS)
Familiarity with adversarial tactics, techniques, and procedures (TTPs)
Capable of analyzing security logs and events from devices such as firewalls (FWs), intrusion detection/prevention sensors (IDS/IPS), host-based IDS/HIPS, proxy/web filter, vulnerability scans, routers, Cisco NetFlow, VPN gateways, server event logs, email and host anti-virus, desktop security agents, anti-virus servers, IP services (DNS, DHCP), network address translation devices, MDM (e.g., cellphones), PKI, and cloud security infrastructure (e.g., AWS, Azure, Oracle, Salesforce)
8570 Certification: Security+ or equivalent
High school diploma
Legally allowed to work in the US, with work performed in the US
Ability to work 5 days onsite per week in Herndon, VA
Ability to work 3x12 or 4x12 hour shifts on a 24x7 rotating basis

Responsibilities

Monitor and analyze security events and alerts reported by the SIEM on a 24x7 basis to identify and investigate suspicious or malicious activity or other cyber events which violate policy
Analyze logs and events from any device types sending logs or events to the SOC, including non-traditional device feeds (e.g., HR data, badging information, physical security devices)
Provide documentation detailing any additional information collected and maintained for each security investigation
Record all artifacts (e.g., emails, logs, documents, URLs, screenshots) associated with security events and incident investigations within the SOC incident and tracking application

Skills

Key technologies and capabilities for this role

SIEMSecurity MonitoringLog AnalysisIncident InvestigationAlert TriageArtifact CollectionCyber Event AnalysisSecret Clearance

Questions & Answers

Common questions about this position

What is the salary for this Security (SOC) Analyst position?

This information is not specified in the job description.

Is this a remote position or does it require onsite work?

The position requires 5 days onsite per week in Herndon, VA.

What skills and experience are required for this SOC Analyst role?

Candidates need an active US Secret Security Clearance, 3+ years in a SOC or NOC environment performing security event monitoring and analysis, working knowledge of operating systems like Windows, OS X, and Linux, network protocols such as TCP, UDP, ICMP, BGP, MPLS, and common applications like SMTP, DNS, HTTP, plus familiarity with adversarial TTPs and analyzing logs from devices like firewalls and IDS/IPS.

What is the work schedule and team structure like?

The role involves working with a large team that rotates 3x12 or 4x12 hour shifts on a 24x7 basis, monitoring security events.

What makes a strong candidate for this SOC Analyst position?

A strong candidate will have an active US Secret Clearance, 3+ years of SOC/NOC experience in security monitoring, knowledge of OS, networks, protocols, and TTPs, and be legally allowed to work in the US with no third-party representation.

UltraViolet Cyber

Unified defensive and offensive cybersecurity solutions

About UltraViolet Cyber

UltraViolet Cyber focuses on enhancing cybersecurity for organizations by integrating both defensive and offensive security operations. Their main services include Managed Detection and Response (MDR), which provides continuous monitoring and response to cyber threats, and Penetration Testing as a Service, where they simulate cyber attacks to find and fix vulnerabilities. This company stands out from competitors by combining the expertise of Red Team (offensive) and Blue Team (defensive) professionals, ensuring that security measures are both proactive and reactive. The goal of UltraViolet Cyber is to help organizations improve their resilience against cyber threats and protect their sensitive data and infrastructure effectively.

McLean, VirginiaHeadquarters

2023Year Founded

$4MTotal Funding

SERIES_ACompany Stage

CybersecurityIndustries

201-500Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Life Insurance

Disability Insurance

401(k) Company Match

401(k) Retirement Plan

Unlimited Paid Time Off

Paid Holidays

Risks

Increased competition from larger firms may pressure UltraViolet Cyber's market share.

Rapid evolution of AI-driven threats may outpace current capabilities, requiring investment.

Integration challenges from the merger could lead to operational inefficiencies and dissatisfaction.

Differentiation

UltraViolet Cyber unifies defensive and offensive security operations for comprehensive threat management.

The company offers Managed Detection and Response and Penetration Testing as a Service.

Security as Code platform automates threat detection, providing a unified risk picture.

Upsides

Growing demand for cloud security solutions offers expansion opportunities for UltraViolet Cyber.

Interest in AI-driven cybersecurity tools aligns with UltraViolet Cyber's automation focus.

Rising need for advanced penetration testing services due to RaaS models benefits UltraViolet Cyber.

Land your dream remote job 3x faster with AI

Try Jobo Free