Tier 2 SOC Analyst

Job Title: Tier 2 SOC Analyst



Location: Falls Church, VA; Morrisville, NC; or Eagan, MN



Eligibility: US Citizenship or Green Card/Permanent Resident required

with the ability to obtain a public trust security clearance.



We’re seeking a Tier 2 SOC Analyst to support a program with the US

Postal Service. In this role, a typical day will include:



- Perform deep-dive incident analysis by correlating data from various

sources and determine if a critical system or data set affected.

Handle incidents as defined in Playbooks and SOPs. Advise on

remediation actions. Respond to Cyber Security Incidents, provide

cyber threat analysis and reporting to support SOC and Program's

situational awareness. Actively monitor security threats and risks,

provide in-depth incident analysis, evaluate security incidents, and

provide proactive threat research.



WHAT YOU’LL NEED TO SUCCEED:



Education:



- Bachelor's Degree in Computer Science or related technical

discipline, preferred but not required.



- NOTE: If resources do not have a relevant college degree, an

additional 4 years of relevant work experience is required.



Required Experience:



- Identification of Cybersecurity problems which may require

mitigating controls



- Analyze network traffic to identify exploit or intrusion related

attempts



- Recommend detection mechanisms for exploit and or intrusion related

attempts



- Provide subject matter expertise on network-based attacks, network

traffic analysis, and intrusion methodologies



- Escalate items which require further investigation to other members

of the Threat Management team



- Execute operational processes in support of response efforts to

identify security incidents



- Manage email security using ProofPoint, monitor for threats, and

promptly respond to attacks



- Configure Splunk for log analysis, create alerts, and investigate

security incidents diligently



- Set up FirePower for network monitoring, analyzing traffic patterns,

and enforce robust security measures



- Deploy Sentinel 1 agents efficiently, monitor alerts closely, and

conduct thorough security assessments



- Monitoring, reviewing, and responding to security alerts and

incidents across multiple platforms including Microsoft Defender for

Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office

365, Azure Entra ID, and Google Cloud Security Command Center (SCC)



- Performing threat detection and analysis, investigating suspicious

activity, coordinating incident response efforts, and implementing

remediation actions



- Tuning security policies, maintaining visibility into cloud and

endpoint environments, and supporting continuous improvement of the

organization’s security posture



Security Clearance Level:



- Ability to obtain and maintain a Public Trust clearance and

successfully pass a thorough Government background screening process

requiring the completion of detailed forms and fingerprinting



- This position has a U.S. residency requirement. The USPS security

clearance process requires the selected candidate to have resided in

the U.S. (including U.S. Territories) for the last five years as

follows: U.S. Citizens cannot have left the U.S. (including U.S.

Territories) for longer than 6 months consecutively in the last 3

years (unless they meet certain exceptions). Non-U.S. Citizens

cannot have left the U.S. (including U.S. Territories) for longer

than 90 days consecutively in the last 3 years.



Location: Falls Church, VA; Morrisville, NC; Eagan, MN; remote

considered



Arena Technical Resources, LLC, (ATR) is an Equal Opportunity Employer

(EOE) who will provide equal employment opportunity to employees and

applicants for employment without regard to race, ethnicity, religion,

color, sex, pregnancy, national origin, age, veteran status, ancestry,

sexual orientation, gender identity or expression, marital status,

family structure, genetic information, or mental or physical disability.