-
Summary
Information Security Office (ISO), Security Operations Center (SOC)
The Information Security Office (ISO), Security Operations Center (SOC) is at the forefront of the client's defense against cyber threats. The position works to protect more than 20,000 devices on the client's network. This position will perform continuous monitoring of critical systems for the client's.
The candidate will be a member of a team focused on endpoint detection and response, antivirus protection, endpoint investigations, and other endpoint security, engineering, and incident response activities. The position will also support the SOC Team Leads and the Security Operations Manager in adequately meeting and addressing the operational demands within the SOC.
Required:
- Five years of information security experience, with a focus on Endpoint Security, Incident Response, and Vulnerability Management within an enterprise environment.
- Knowledge of Windows and Linux systems and their associated scripting languages, experience with AWS or Azure cloud environments, and will have worked with endpoint security platforms such as Microsoft Defender for Endpoint, FireEye, Crowdstrike, McAfee, or similar, and with vulnerability testing products such as Windows Defender TVM, Tenable Nessus, Rapid 7 InsightVM, Qualys, or similar. Experience with any of the popular SIEM platforms is also desired (Splunk, Azure Sentinel, Sumo Logic, LogRhythm, Elasticsearch, etc.)
Qualification:
- A four-year college degree in computer science or a related field with advanced study preferred; One or more relevant technical security certifications are a plus (GIAC, ISC2, CompTIA, EC Counsel, etc.)
Required Skills: Network Security Additional Skills: Security Analyst
This is a high PRIORITY requisition.
-
Job Description
Information Security Office (ISO), Security Operations Center (SOC)
The Information Security Office (ISO), Security Operations Center (SOC) is at the forefront of the client's defense against cyber threats. The position works to protect more than 20,000 devices on the client's network. This position will perform continuous monitoring of critical systems for the client's.
The candidate will be a member of a team focused on endpoint detection and response, antivirus protection, endpoint investigations, and other endpoint security, engineering, and incident response activities. The position will also support the SOC Team Leads and the Security Operations Manager in adequately meeting and addressing the operational demands within the SOC.
Required:
- Five years of information security experience, with a focus on Endpoint Security, Incident Response, and Vulnerability Management within an enterprise environment.
- Knowledge of Windows and Linux systems and their associated scripting languages, experience with AWS or Azure cloud environments, and will have worked with endpoint security platforms such as Microsoft Defender for Endpoint, FireEye, Crowdstrike, McAfee, or similar, and with vulnerability testing products such as Windows Defender TVM, Tenable Nessus, Rapid 7 InsightVM, Qualys, or similar. Experience with any of the popular SIEM platforms is also desired (Splunk, Azure Sentinel, Sumo Logic, LogRhythm, Elasticsearch, etc.)
Qualification:
- A four-year college degree in computer science or a related field with advanced study preferred; One or more relevant technical security certifications are a plus (GIAC, ISC2, CompTIA, EC Counsel, etc.)
Required Skills: Network Security Additional Skills: Security Analyst
This is a high PRIORITY requisition.
-
ABOUT THE COMPANY
-
-
Government Careers
Show moreGovernment jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.
Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.
Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.
-