Security Operations Center Analyst II - Remote

Overview:

The Security Operations Center (SOC) Analyst is part of the Operations and Security Services department, which resides on the SOC team and reports to the SOC Manager. The primary purpose of this position is to help coordinate and report on cyber incidents impacting U.S State, Local, Tribal, and Territorial (SLTT) governments. This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work. 

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry-leading best practices for securing IT systems and data. CIS is also a trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities and election offices.

CIS has an award-winning reputation for investing in its people (click here to learn more), as well as continuous learning and development. We offer our employees diverse opportunities to expand their impact personally and professionally, in their local communities, and among one another. Core Leadership Principles drive our employees at every level of the organization, empowering them to be leaders in everything they do.

• Base salary is determined on a number of factors including, but not limited to, education, experience and skills
• Health (PPO, EPO, HSA), Dental & Vision Insurance eligibility starting from the first day of hire
• $500 wellness card for Health Coverage Participants
• 401(k) with 4% Company Match, vested from the first day of hire
• Flexible Spending Account (FSA) & Dependent Care Account (DCA)
• Life Insurance
• Bonding Leave
• Paid Volunteering Program
• Bonus eligibility
• Paid Time Off (PTO) inclusive of vacation, personal and sick time
• Paid Holidays
• Wellness Program
• Employee Engagement Activities
• Professional Development Opportunities
• Tuition Reimbursement
• Student Loan PayDown Program
• Employee Referral program
• Employee Assistance Program

• Responsible for working in a 24x7 Security Operation Center (SOC) environment
• Provide analysis of network and host-based security events and trends of security log data from a large number of heterogeneous security devices
• Provide Incident Response (IR) support when analysis confirms actionable incident
• Provide threat and vulnerability analysis as well as security advisory services
• Analyze and respond to previously undisclosed software and hardware vulnerabilities
• Investigate, document, and report on information security issues and emerging trends
• Coordinate with Intel analysts on open-source activities impacting SLTT governments
• Integrate and share information with other analysts and other teams
• Other tasks and responsibilities as assigned

• Bachelor's degree in a related field or equivalent demonstrated experience and knowledge*
• Experience analyzing network and host-based security events
• Knowledge of various security methodologies and processes, and technical security solutions
• Knowledge of incident response life cycle and steps
• Knowledge of TCP/IP protocols, network analysis, and network/security applications
• Knowledge of common Internet protocols and applications
• The position is open to U.S. citizens and requires a favorably adjudicated DHS Fitness Review for Public Trust Positions**

It's a Plus if You Have:

• GCIA, GCIH, Network+, Security+, or other related certifications
• 1+ years' experience as a Security/Network Administrator or equivalent knowledge
• Working knowledge of databases and database querying languages
• Experience in an incident response or incident handler position

*Additional years of relevant experience or a combination of an Associate’s degree or equivalent and relevant experience may be substituted for the Bachelor’s degree.

**Factors that may cause a negative Fitness Review decision include:

• Criminal Conduct
• Dishonest Conduct
• Employment Misconduct
• Alcohol Abuse
• Drug Use (illegal drug use or use of a legal drug in a manner that deviates from approved medical direction)
• False Statements
• Have not resided in the US for three (3) of the past five (5) years

At CIS, we are committed to providing an inclusive environment in which the diverse backgrounds, experiences, and views of our employees, members, and customers are valued and respected. It is through this commitment that we are able to work together towards our common mission: to make the connected world a safer place.