Cyber Security Operations Analyst

Mantech International Corporation
Boulder, United States of America
4 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Shift work
Languages
English
Experience level
Junior

Job location

Boulder, United States of America

Tech stack

Computer Security
Computer Networks
Linux
Intrusion Detection Systems
Office Suite
ArcSight SIEM Tool
Phishing
Security Information and Event Management
Transmission Control Protocol (TCP)
Windows Desktop
Firewalls (Computer Science)
Information Technology
Splunk

Job description

  • Monitor security consoles and identify security platform alerts (SIEM, IDS/IPS, Firewall, etc.) for potential malicious activity.

  • Perform initial analysis and triaging of security events to determine severity and impact.

  • Maintain detailed logs of activity and create initial incident reports for escalation to incident responders and other team members.

  • Review network traffic patterns and system logs to identify unauthorized access or anomalies.

  • Assist with the health and maintenance checks of security tools and sensors.

  • Coordinate with team members and shift leads to ensure a seamless handoff between night and day operations.

  • This position requires shifts that may include days, nights, and/or weekends to ensure continuous coverage. Examples include: Saturday & Sunday: 12-hour night shifts (8:00 PM - 8:00 AM). Weekdays: Two additional 8-hour shifts (to be scheduled) to complete a 40-hour work week. Monday - Friday: shifts may be 8am - 4pm, 4pm to 12 midnight, or 12 midnight to 8am.

Requirements

  • Bachelor's degree in Cybersecurity, Computer Science, or a related field (or equivalent military/professional experience) is preferred.

  • 0-2 years of experience in a SOC, NOC, or technical support environment.

  • Basic understanding of TCP/IP networking and common protocols as well as:

  • Familiarity with Windows and Linux operating systems.

  • Exposure to security tools like Splunk, ArcSight, Sentinel or others is a plus.

  • Basic understanding of Security alerts, logs, and event analysis.

  • Basic understanding of common attack types (phishing, malware, brute force, lateral movement).

  • Must be able to consistently work the 12-hour weekend night shift (Sat/Sun 8 PM - 8 AM) and/or other assigned shifts.

Preferred Qualifications:

  • Certifications: Security+, CySA+, GCIH, or similar is preferred.

  • Active Top Secret clearance

Clearance Requirements:

  • Must be a US Citizen with a current/active secret clearance.

Physical Requirements:

  • Must be able to remain in a stationary position 50%

  • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.

Apply for this position