Cyber Security Operations Analyst
Role details
Job location
Tech stack
Job description
The Cyber Security Specialist plays a critical role in protecting DTRA's enterprise network by providing 24/7 cybersecurity monitoring, threat detection, and incident response support. Working alongside Cybersecurity Service Provider (CSSP) analysts, engineers, and agency stakeholders, you will help identify emerging threats, assess risk, investigate security events, and support the defense of mission-critical systems.
This position is ideal for candidates who enjoy threat hunting, cybersecurity operations, incident response, and working in a fast-paced environment focused on protecting national security interests., Monitor and defend DTRA's network environment through continuous 24x7x365 cybersecurity operations. Analyze security alerts, investigate suspicious activity, and identify potential threats across enterprise systems. Collaborate with CSSP analysts, engineers, and internal teams to assess risks, develop mitigations, and respond to security incidents. Perform threat hunting activities using industry-standard security tools and techniques. Monitor computer network defense services to ensure the confidentiality, integrity, and availability of DTRA's information systems and infrastructure. Support compliance with DoD Cybersecurity Service Provider (CSSP) Evaluator Securing Metrics (ESM) requirements. Conduct research on cyber threats, threat actors, vulnerabilities, and adversary tactics using open-source and government intelligence resources. Develop detailed technical reports documenting investigations, findings, containment actions, and recommendations. Provide cybersecurity situational awareness and reporting to leadership and key stakeholders. Participate in incident escalation, response, and coordination activities within the established CSSP framework.
Requirements
Experience monitoring and responding to cybersecurity events in a SOC, CSSP, or similar operational environment. Familiarity with threat hunting, incident response, and security monitoring tools. Ability to analyze alerts, investigate potential threats, and determine appropriate response actions. Strong technical writing skills with experience documenting security incidents and findings. Knowledge of cybersecurity principles, network defense, and threat actor tactics, techniques, and procedures (TTPs). Strong research and analytical skills. Ability to work effectively in a collaborative, team-oriented environment. Willingness to support a 24x7 operational mission, including shift work as required., BS 5-7 Years, MS 3-5, PhD 0-2 Experience with cyber security architecture principles that achieve cybersecurity framework goals. Must have Active DoD Top Secret clearance IAT Level II certification and CSSP Analyst certification (Security+ CE or better, CEH or better) Experience with open-source research
DESIRED QUALIFICATIONS
- SANS GCIH or similar certification
- Splunk Search App experience
- Tanium Interact Module experience
- Wireshark experience
- Open-source research experience
Benefits & conditions
Schedule: 2200-0600 - Friday to Tuesday . May be requested to work evenings and weekends to meet program and contract needs. Location: Onsite Ft Belvoir, VA Clearance requirement: Active DoD Top Secret- must be SCI eligible Type of Environment: Office Amount of travel: 10%