Key Role:
Support Tier 3 operations by monitoring alerts during critical and high volume events. Conduct more in-depth analyses of security incidents to identify incidents of compromise. Perform intrusion scope and root cause analyses and assist with intrusion remediation, strategy development, and implementation. Recommend effective process changes to enhance defense and response procedures. Manage high and critical severity incidents, as described in the operations playbook, perform additional analysis of escalations from the level 2 analyst, and review level 2 tickets. Coordinate with threat operations and threat intelligence specialists to resolve high or critical severity level incidents. Provide on-boarding training and coaching to tier 1 and 2 SOC analysts. This position will require travel up to 75% of the time and may be located in the New York City area, the Washington, DC metro area, North Carolina, or South Carolina.


Basic Qualifications:
-5+ years of experience with network security in a professional services organization
-Experience with using event escalation and reporting procedures
-Knowledge of TCP/IP communications and how common protocols and applications work at the network level, including DNS, HTTP, and SMB
-Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
-Ability to travel up to 75% to 100% of the time
-Ability to demonstrate analytical expertise, close attention to detail, critical thinking, logic, and solution orientation and to learn and adapt quickly
-BA or BS degree

Additional Qualifications:
-Experience with working in a 24/7 SOC environment
-Experience with Incident Response, Incident Handling and/or Triage Analysis
-Experience with Mandiant or FireEye security products
-Experience with managing cases with enterprise SIEM and logging systems
-Experience with conducting forensic media analysis and log file analysis
-Experience with supporting network investigations
-Knowledge of how the Windows file system and registry function
-Knowledge of UNIX operating systems and command line tools
-Ability to learn and operate in a dynamic environment
-BA or BS degree in CS, IT, EE, Applied Mathematics, Computer Engineering, or a related field

Integrating the full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems, working by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.

We are proud of our diverse environment, EOE, M/F/Disability/Vet.

Job Management Analysis and Consulting

Primary Location United States-District of Columbia-Washington

Travel Yes, 75 % of the Time

Ad Code CCG, CMCL, #LI-AH1


. . . . . . . .

Leave a Reply