SOC Analyst/Security Engineer (Entry-Level, Mid-Level, Experienced)

 

B&M Cyber is hiring SOC Analysts/Security Engineers (Entry-Level, Mid-Level, and Experienced) based in the Atlanta, GA Metro Area to support cyber defense/incident response (IR) activities and the installation, configuration, integration, operations, and maintenance of security capabilities for cloud-hosted and on-premises systems and applications. The candidates who fill the positions will work onsite in Atlanta in a team environment with a highly experienced Technical Lead and Project Manager.


Responsibilities:

  • Evaluating the architecture and configuration of SOC/NOC tools (SIEM, SOAR, EDR, DLP, etc.) and the availability/quality of telemetry/monitoring data, and designing and implementing enhancements to capabilities, data, and cyber defense/IR processes.

  • Performing ongoing monitoring and proactive cyber threat hunting of Federal networks, systems, and applications to effectively identify and address cyber incidents.

  • Performing containment, investigation, and eradication/recovery for cyber incidents, to include forensic evidence preservation.

  • Supporting cyber defense/IR reporting and performance monitoring activities.

  • Supporting Federal system/application teams in the selection, implementation, integration, and secure use of cloud-native and on-premises security capabilities aligned with Federal standards and client requirements.

 

Qualifications:

  • Bachelor or Master of Science in Cybersecurity or similar field with GPA > 3.5

  • 2 years of experience as a security analyst or in a related capacity

  • Must have one of the following certifications:

    • Cisco certified CyberOps Associate CyberOps Associate

    • SOC Certification (eccouncil.org)

    • Cisco certified professional - CyberOps Professional

    • CySA+ Cybersecurity Analyst+ (comptia.org)

    • GCIA GIAC Intrusion Analyst Certification

    • EC Council Certified SOC Analyst (CSA) - Certified SOC Analyst (CSA) Training

    • GIAC Security Operations - GIAC Security Operations (SOC) Certification | GSOC

  • Familiarity with various security tools and capabilities, including intrusion detection, firewalls and content filtering, vulnerability scanning, etc.

  • Familiarity with cloud development, implementation, and maintenance

  • Familiarity with designing secure networks, systems, and application architectures

  • Knowledge of risk assessment tools, technologies, and methods

  • Ability to clearly communicate security issues to peers and management in writing and verbally

  • Ability to read and use results of various security testing tools, perform false-positive analysis and validation, and communicate results and recommended remediation actions to technical and non-technical audiences

 

Tools:

Familiarity with the following tools is preferred, but not required: Splunk, NetWitness, Remedy/Salesforce, RSA Archer, vulnerability scanning tools (Tenable/Nessus), and/or cloud security capabilities for AWS, Azure, GCP, etc.


Citizenship Requirements:

U.S. Citizens or Permanent Residents (Green Card Holders). Applicants selected will be subject to a government security investigation and must be able to pass the Federal background check for a public trust clearance.

To Apply:

Please send your detailed resume that includes a summary of your qualifications at the top of your resume, as well as your overall GPA for each degree to hr@bm-cyber.com


Equal Opportunity Employer:
B&M Cyber is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.