ECS
Overview
ECS is seeking a Cyber Threat Analyst 1 to work in our Fairfax, VA office. As a leading managed cybersecurity services provider, ECS delivers a highly tailored and customized offering to each customer. Our team is responsible for protecting the ECS corporate and customer networks. Our mission is broad, and our team is agile. We will leverage your unique skills to help solve customers’ challenges, such as engineering a system to address a technical hurdle, protecting customer data, or consulting on a wide range security topics. You are empowered to engage and lead across multiple groups and must have the self-sufficiency and focus to work well without constant oversight. Our Cyber Threat Analysts are responsible for investigating threats targeting ECS’ internal network and commercial customers. They support the commercial cybersecurity program during core and non-core business hours. This position requires you to work rotating shifts in a dynamic, fast-paced 24x7x365 operations environment. As a Cyber Threat Analyst, you will have mentors to help guide you through your ECS journey. Responsibilities
Conduct network monitoring and intrusion detection analysis using defense tools, including IDS/IPS, firewalls, and host-based security systems. Analyze security events in a SIEM environment to correlate and identify indicators of potential threat activity. Research emerging cyber threats and vulnerabilities to aid in the identification and response to incidents. Perform log-based and endpoint-based threat detection to identify and defend against potential security threats across multiple sources. Correlate network, cloud, and endpoint activities to identify unauthorized access or attacks. Review alerts from security sensors, documenting technical details and incident reports for further investigation. Assess and resolve phishing email submissions from clients, identifying malicious content and recommending mitigation actions. Collaborate with threat intelligence and threat-hunting teams, maintaining awareness of updated threat intelligence sources and methodologies. Support investigations for both minor and significant cybersecurity incidents, assisting in containment and analysis efforts. Communicate security incidents and findings to both internal teams and external customers, as needed. Required Skills
1+ years of experience in a technology-centered role or completion of a degree in Information Technology, Computer Science, Cybersecurity, or a related field. Basic Knowledge of cybersecurity principles, threat detection, and SOC operations. Basic understanding of networking concepts. Strong problem-solving, troubleshooting, and decision-making skills, with the ability to make sound judgments. Demonstrated commitment to high standards of ethics, regulatory compliance, customer service, and business integrity. Ability to support on-site travel to ECS offices or customer locations within the U.S. or OCONUS (short-term, planned travel). U.S. citizenship with the ability to achieve and maintain a Secret clearance. Desired Skills
Previous experience as an analyst in a Security Operations Center (SOC). Familiarity with EDR, SIEM, SOAR, and ticketing technologies. Knowledge of threat actor tactics, techniques, and procedures (TTPs). Ability to support ad hoc scripting in any language (Python or PowerShell preferred). ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law. ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
#J-18808-Ljbffr
ECS is seeking a Cyber Threat Analyst 1 to work in our Fairfax, VA office. As a leading managed cybersecurity services provider, ECS delivers a highly tailored and customized offering to each customer. Our team is responsible for protecting the ECS corporate and customer networks. Our mission is broad, and our team is agile. We will leverage your unique skills to help solve customers’ challenges, such as engineering a system to address a technical hurdle, protecting customer data, or consulting on a wide range security topics. You are empowered to engage and lead across multiple groups and must have the self-sufficiency and focus to work well without constant oversight. Our Cyber Threat Analysts are responsible for investigating threats targeting ECS’ internal network and commercial customers. They support the commercial cybersecurity program during core and non-core business hours. This position requires you to work rotating shifts in a dynamic, fast-paced 24x7x365 operations environment. As a Cyber Threat Analyst, you will have mentors to help guide you through your ECS journey. Responsibilities
Conduct network monitoring and intrusion detection analysis using defense tools, including IDS/IPS, firewalls, and host-based security systems. Analyze security events in a SIEM environment to correlate and identify indicators of potential threat activity. Research emerging cyber threats and vulnerabilities to aid in the identification and response to incidents. Perform log-based and endpoint-based threat detection to identify and defend against potential security threats across multiple sources. Correlate network, cloud, and endpoint activities to identify unauthorized access or attacks. Review alerts from security sensors, documenting technical details and incident reports for further investigation. Assess and resolve phishing email submissions from clients, identifying malicious content and recommending mitigation actions. Collaborate with threat intelligence and threat-hunting teams, maintaining awareness of updated threat intelligence sources and methodologies. Support investigations for both minor and significant cybersecurity incidents, assisting in containment and analysis efforts. Communicate security incidents and findings to both internal teams and external customers, as needed. Required Skills
1+ years of experience in a technology-centered role or completion of a degree in Information Technology, Computer Science, Cybersecurity, or a related field. Basic Knowledge of cybersecurity principles, threat detection, and SOC operations. Basic understanding of networking concepts. Strong problem-solving, troubleshooting, and decision-making skills, with the ability to make sound judgments. Demonstrated commitment to high standards of ethics, regulatory compliance, customer service, and business integrity. Ability to support on-site travel to ECS offices or customer locations within the U.S. or OCONUS (short-term, planned travel). U.S. citizenship with the ability to achieve and maintain a Secret clearance. Desired Skills
Previous experience as an analyst in a Security Operations Center (SOC). Familiarity with EDR, SIEM, SOAR, and ticketing technologies. Knowledge of threat actor tactics, techniques, and procedures (TTPs). Ability to support ad hoc scripting in any language (Python or PowerShell preferred). ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law. ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
#J-18808-Ljbffr