Jr. SOC Analyst (Swing Shift 2 PM - 10 PM)

Zachary Piper Solutions is seeking a dedicated Jr. SOC Analyst for our swing shift (Monday - Friday, 2 PM - 10 PM) in New Carrollton, MD. This is a hybrid role that could potentially come on site up to 5 days per week. This role is critical in safeguarding the IRS network and involves critical monitoring, analysis, and incident handling within our SOC environment, ensuring the security and integrity of our network and data against cyber threats.

Key Responsibilities:

• Conduct incident handling with a strong focus on PCAP analysis, understanding and applying SPL and snort rules to identify and mitigate threats.
• Utilize incident analysis skills to interpret alerts, track down events, and correlate logging from multiple devices, providing detailed documentation of findings.
• Develop technical theories based on threat intelligence to identify anomalies and security risks, improving our incident response capability.
• Work independently with minimal supervision, demonstrating solid understanding of networking, attacker methodologies, and cyber security fundamentals.
• Engage in proactive threat hunting using available tools and data, including Splunk ES, FireEye, ZScaler NetWitness, Wireshark, and Linux CLI, to protect the network.

Requirements:

• 2-5 years of Cyber Security Experience, ideally within a SOC/CIRT environment.
• Strong experience with Splunk Search Processing Language (SPL) and packet capture (PCAP) analysis.
• Understanding of intruder techniques, ability to identify and alert on malicious data, and silence false positives.
• Familiarity with common IDS rule writing terminology.
• Proficient in networking fundamentals and operating systems, including Windows and Linux.
• Excellent communication skills and ability to work collaboratively in a team environment.
• Ability to obtain IRS Public Trust clearance.

Salary Range: $68,000 - $82,000. PTO, Holidays, Health, Dental, Vision, 401K, Sick Time as Required by Law

This job opens for applications on 1/13/2025. Applications for this job will be accepted for at least 30 days from the posting date

#LI-CB1

Keywords: Cybersecurity, Incident Response, Splunk, Packet Capture, Network Forensics, Threat Hunting, Intrusion Detection, Log Analysis, SIEM (Security Information and Event Management), Malware Analysis, Network Traffic Analysis, Forensic Analysis, Threat Intelligence, Security Operations Center (SOC), Vulnerability Assessment, IDS/IPS (Intrusion Detection System/Intrusion Prevention System), PCAP Analysis, Network Security, Anomaly Detection, Endpoint Detection and Response (EDR), Cyber Threats, Cyber Attack, Threat Mitigation, Forensic Investigation, Digital Forensics, Security Incident, Data Breach, Advanced Persistent Threat (APT), Insider Threat, Security Policies, Compliance Management, Security Architecture, Security Operations, Incident Handling, Network Security Monitoring (NSM), Security Awareness Training, Security Risk Assessment, Threat Intelligence Platforms (TIP), Security Analytics, Insider Threat Detection