Cyber Security Operations Analyst
H2 Performance ConsultingUnited States1 day ago
Full-timeInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
H2 Performance Consulting is an Equal Opportunity/Affirmative Action Employer and strives to build a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status. As a Federal Contractor, H2 Performance Consulting is required under Executive order 12989, to verify employment eligibility of selected candidates through the Department of Labor's - E-Verify.
H2 is seeking a Cybersecurity Operations Analyst to support the Navy Enterprise Business Solutions program office. The Operations Analyst will use Splunk Enterprise Security in a large enterprise environment, write Splunk scripts for events filtering and analysis, and work with operating system administrators in support of alert/incident response for a major SAP/ERP system.
The Cyber Security Operations Analyst responsibilities include:
H2 is seeking a Cybersecurity Operations Analyst to support the Navy Enterprise Business Solutions program office. The Operations Analyst will use Splunk Enterprise Security in a large enterprise environment, write Splunk scripts for events filtering and analysis, and work with operating system administrators in support of alert/incident response for a major SAP/ERP system.
The Cyber Security Operations Analyst responsibilities include:
- Will use Splunk Enterprise Security in a large enterprise environment and write Splunk scripts for events filtering and analysis
- Work with operating system administrators in support of Alert/Incident response
- Identify communications paths as it relates to alert/incident investigations
- Understand TCP/IP (IPv4, IPv6) along with related protocols and technologies (HTTP, FTP, SSH, NFS, DNS, NTP, FTP, DHCP, SMTP, SSL, etc.)
- Requires understanding of routing protocols, proxies, and firewalls
- Will maintain documentation of processes, procedures and configurations related to maintaining applications
- Requires knowledge of forensics, network analysis, log analysis, systems hardening, encryption technologies, certificates, mobile, and web application security
- Assist in proactively developing security best practices procedures and processes within the security operations team
- Will write situational analyses for high-risk threats and suggests appropriate courses of action for remediation
- Will document all activities during an incident/investigation and provides leadership with status updates during the life cycle of the incident/investigation
- Requires theoretical knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)
- The ideal candidate will have the knowledge, skills and abilities required to write scripts (bash, shell, perl, python, etc...) and write regular expressions
- The ideal candidate will knowledge of Operating System audit events to include Windows and Linux
- The ideal candidate will knowledge of Database audit events to include Oracle, MS SQL, Sybase, and HANA
- The ideal candidate will have hands-on IT experience to include server build, ldap, and an understanding of Encryption Algorithms and PKI authentication implementation
- The candidate must have an active SECRET security clearance and ability to gain a favorably adjudicated T5 background investigation
- The candidate must have a bachelor's degree in Software Engineering or related field
- The candidate must be certified to meet IAT Level 1 CSWF requirements (i.e.: Isc2's CISSP)
- The ideal candidate will have 3 to 5 years of experience
- Working in a cybersecurity operations environment maintaining the security of enterprise level systems
- Working as a Systems/Network Administrator
- As a User or Administrator of a Splunk Enterprise Security (ES) implementation
- In a Security Operations Center (SOC) environment
- The ideal candidate will have completed the Splunk Enterprise Security User and/or Splunk Enterprise Security Administrator courses
- The candidate must have familiarity with SIEM tools, monitoring tools and automated security assessment tools
- Experience with Agile and/or DEVSECOPS a plus
- SAP and/or ERP experience a plus
- Must be capable of performing effectively individually and as part of a team
- Must have effective critical thinking and problem-solving skills
- Must have strong oral and written communication skills
- Must be proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook
- Must be able to manage time and be on time to meetings
Key Skills
Ranked by relevanceReady to apply?
Join H2 Performance Consulting and take your career to the next level!
Application takes less than 5 minutes