Join our team at Core One! Our mission is to be at the forefront of devising analytical, operational and technical solutions to our Nation's most complex national security challenges. In order to achieve our mission, Core One values people first! We are committed to recruiting, nurturing, and retaining top talent! We offer a competitive total compensation package that sets us apart from our competition. Core One is a team-oriented, dynamic, and growing company that values exceptional performance!
Senior Operations Center (SOC) Engineer
Position Summary: Detect, identify, alert, and action possible attacks/intrusions, anomalous activities, and misuse.
Department: Engineering
Core Responsibilities and Accountabilities:
- Monitor security audit and intrusion detection system logs, web application firewall logs and other security logs for system and network anomalies.
- Assist with the support and administration of current security systems while also monitoring logs for security events.
- Work with developers, IT, and other Information Security staff as needed to resolve security events and complete projects.
- Monitor SIEM and other tools for detection & identification of security anomalies.
- Investigate and resolve anomalies and events.
- Ingest global security incident notifications.
- Assist with maintaining and enhancing the current security infrastructure.
- Assist with network security evaluations and enhancements.
- Participate as a member of a cross-functional team.
- Shift work and/or on-call may be required to include days, nights, weekends and holidays.
Requirements and Skills:
- Bachelor’s Degree in Computer Security related field (or other IT/risk related discipline) and/or 5 additional years relevant experience in lieu of education.
- 1-2 years Security Operations Center (SOC) environment experience with security engineering and monitoring experience.
- Proficient with shell scripting.
- Must enjoy learning and be self-motivated with the ability to switch contexts as the needs of the business evolve.
- Excellent oral and written communication skills.
- Ability to understand others and clearly express thoughts.
- Must be a US Citizen with the ability to obtain a security clearance.
Desired Skills:
- 1-2 years' experience with intrusion detection systems.
- Security certifications such as CISSP, COMPTIA Security +, SANS SEC401 or CEH.
- Experience using SIEM products.
- Experience using Wireshark to perform protocol analysis.
- Experience using Gitlab.
Core One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
__PRESENT
Top Skills
What We Do
Our mission is to be at the forefront of devising analytical, operational and technical solutions to the most complex national security challenges by delivering superior advice, building trusted partnerships, and augmenting the capabilities of our clients.