PlanIT Group, LLC
Join to apply for the
CSOC Analyst II
role at
PlanIT Group, LLC Join to apply for the
CSOC Analyst II
role at
PlanIT Group, LLC Get AI-powered advice on this job and more exclusive features. PlanIT Group is seeking a CSOC Analyst II to support our Federal customer in the Washington, DC area. The ideal candidate will be responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization’s security posture
Job Title:
CSOC Analyst II
Location:
Remote
Duration:
One year plus annual extensions
CSOC Analyst II
Key Responsibilities
Identification of Cybersecurity problems which may require mitigating controls Analyze network traffic to identify exploit or intrusion related attempts Recommend detection mechanisms for exploit and or intrusion related attempts Provide subject matter expertise on network-based attacks, network traffic analysis, and intrusion methodologies Escalate items which require further investigation to other members of the Threat Management team Execute operational processes in support of response efforts to identified security incidents Responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization’s security posture
Job Responsibilities Will Include
Participates in a team of Security operations engineers investigating alerts, anomalies, errors, intrusions, malware, etc. to identify the responsible, determine remediation, and recommend security improvements Follows precise analytical paths to determine the nature and extent of problems being reported by tools, e-mails, etc Follows strict guidance on reporting requirements Keeps management informed with precise, unvarnished information about security posture and events Promotes standards-based workflow both internally and in coordinating with CISA Engages with other internal and external parties to get and share information to improve processes and security posture Guide team efforts Communicates to leadership Leads analyzing/investigating reports or anomalies
Requirements
Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance Preferred 3+ years IT security experience Preferred 2+ years’ experience in network traffic analysis Strong working knowledge of: TCP/IP Fundamentals Network Level Exploits Excellent oral and written communication skills Excellent interpersonal and organizational skills Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies Strong understanding of common IDS/IPS architectures and implementations Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection Azure and GCP O365/Microsoft 365 experience required
Desired Skills
Splunk experience, developing queries Cloud monitoring experience Excellent writing skills
Required Education
Bachelor's OR Master's Degree in Computer Science, Information Systems, or other related field. Or equivalent work experience.
Certifications (one Or More Desired)
Comp TIA Security+, CISSP, CISA, CISM, GIAC, RHCE.
Additional Provisions
Must be able to obtain a Position of Public Trust Clearance Pass both a client mandated clearance process to include drug screening, criminal history check and credit check. All candidates must be a US Citizen or US Permanent Residents only Candidate must have lived in the United States for the past 5 years. Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)
Seniority level
Seniority level Associate Employment type
Employment type Contract Job function
Job function Business Development and Sales Industries Defense and Space Manufacturing, Software Development, and Armed Forces Referrals increase your chances of interviewing at PlanIT Group, LLC by 2x Sign in to set job alerts for “Analyst” roles.
Analyst - Emergency Management Consulting (Remote)
District of Columbia, United States $70,000.00-$73,000.00 2 days ago Data Management Analyst, Junior (Future Need)
Arlington, VA $30,000.00-$40,000.00 3 weeks ago Washington, DC $93,000.00-$105,000.00 7 hours ago Washington, DC $66,000.00-$106,000.00 1 day ago Silver Spring, MD $101,700.00-$105,000.00 4 weeks ago Washington, DC $50,000.00-$70,000.00 1 month ago Gaithersburg, MD $117,000.00-$133,000.00 4 months ago Washington DC-Baltimore Area 2 months ago Business Intelligence Analyst - Tableau - Remote US
Washington, DC $70,000.00-$90,000.00 7 hours ago Washington DC-Baltimore Area $55,000.00-$65,000.00 3 days ago McLean, VA $90,000.00-$100,000.00 6 hours ago REMOTE Data Migration Specialist - $60k-$75k (SQL, Excel, CRMs)
Washington, DC $60,000.00-$75,000.00 2 weeks ago Washington, DC $90,000.00-$120,000.00 3 weeks ago Senior Cybersecurity & Compliance Analyst
Reston, VA $110,000.00-$130,000.00 4 months ago Geopolitical & Counterintelligence Analyst
Washington, DC $80,000.00-$90,000.00 1 day ago Washington, DC $110,000.00-$150,000.00 1 week ago Washington DC-Baltimore Area $20.00-$25.00 1 day ago Washington DC-Baltimore Area 3 months ago District of Columbia, United States $75,000.00-$95,000.00 1 day ago Centreville, VA $150,000.00-$175,000.00 6 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
CSOC Analyst II
role at
PlanIT Group, LLC Join to apply for the
CSOC Analyst II
role at
PlanIT Group, LLC Get AI-powered advice on this job and more exclusive features. PlanIT Group is seeking a CSOC Analyst II to support our Federal customer in the Washington, DC area. The ideal candidate will be responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization’s security posture
Job Title:
CSOC Analyst II
Location:
Remote
Duration:
One year plus annual extensions
CSOC Analyst II
Key Responsibilities
Identification of Cybersecurity problems which may require mitigating controls Analyze network traffic to identify exploit or intrusion related attempts Recommend detection mechanisms for exploit and or intrusion related attempts Provide subject matter expertise on network-based attacks, network traffic analysis, and intrusion methodologies Escalate items which require further investigation to other members of the Threat Management team Execute operational processes in support of response efforts to identified security incidents Responsible for monitoring, reviewing, and responding to security alerts and incidents across multiple platforms including Microsoft Defender for Cloud Apps, Defender for Endpoint, Defender XDR, Defender for Office 365, Azure Entra ID, and Google Cloud Security Command Center (SCC). Duties include performing threat detection and analysis, investigating suspicious activity, coordinating incident response efforts, and implementing remediation actions. The role also involves tuning security policies, maintaining visibility into cloud and endpoint environments, and supporting continuous improvement of the organization’s security posture
Job Responsibilities Will Include
Participates in a team of Security operations engineers investigating alerts, anomalies, errors, intrusions, malware, etc. to identify the responsible, determine remediation, and recommend security improvements Follows precise analytical paths to determine the nature and extent of problems being reported by tools, e-mails, etc Follows strict guidance on reporting requirements Keeps management informed with precise, unvarnished information about security posture and events Promotes standards-based workflow both internally and in coordinating with CISA Engages with other internal and external parties to get and share information to improve processes and security posture Guide team efforts Communicates to leadership Leads analyzing/investigating reports or anomalies
Requirements
Must be eligible to obtain a sensitive clearance - Position of Public Trust - and may be required to obtain a higher security clearance Preferred 3+ years IT security experience Preferred 2+ years’ experience in network traffic analysis Strong working knowledge of: TCP/IP Fundamentals Network Level Exploits Excellent oral and written communication skills Excellent interpersonal and organizational skills Strong understanding of IDS/IPS technologies, trends, vendors, processes and methodologies Strong understanding of common IDS/IPS architectures and implementations Strong understanding of IDS/IPS signatures, content creation and signature characteristics including both signature and anomaly-based analysis and detection Azure and GCP O365/Microsoft 365 experience required
Desired Skills
Splunk experience, developing queries Cloud monitoring experience Excellent writing skills
Required Education
Bachelor's OR Master's Degree in Computer Science, Information Systems, or other related field. Or equivalent work experience.
Certifications (one Or More Desired)
Comp TIA Security+, CISSP, CISA, CISM, GIAC, RHCE.
Additional Provisions
Must be able to obtain a Position of Public Trust Clearance Pass both a client mandated clearance process to include drug screening, criminal history check and credit check. All candidates must be a US Citizen or US Permanent Residents only Candidate must have lived in the United States for the past 5 years. Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)
Seniority level
Seniority level Associate Employment type
Employment type Contract Job function
Job function Business Development and Sales Industries Defense and Space Manufacturing, Software Development, and Armed Forces Referrals increase your chances of interviewing at PlanIT Group, LLC by 2x Sign in to set job alerts for “Analyst” roles.
Analyst - Emergency Management Consulting (Remote)
District of Columbia, United States $70,000.00-$73,000.00 2 days ago Data Management Analyst, Junior (Future Need)
Arlington, VA $30,000.00-$40,000.00 3 weeks ago Washington, DC $93,000.00-$105,000.00 7 hours ago Washington, DC $66,000.00-$106,000.00 1 day ago Silver Spring, MD $101,700.00-$105,000.00 4 weeks ago Washington, DC $50,000.00-$70,000.00 1 month ago Gaithersburg, MD $117,000.00-$133,000.00 4 months ago Washington DC-Baltimore Area 2 months ago Business Intelligence Analyst - Tableau - Remote US
Washington, DC $70,000.00-$90,000.00 7 hours ago Washington DC-Baltimore Area $55,000.00-$65,000.00 3 days ago McLean, VA $90,000.00-$100,000.00 6 hours ago REMOTE Data Migration Specialist - $60k-$75k (SQL, Excel, CRMs)
Washington, DC $60,000.00-$75,000.00 2 weeks ago Washington, DC $90,000.00-$120,000.00 3 weeks ago Senior Cybersecurity & Compliance Analyst
Reston, VA $110,000.00-$130,000.00 4 months ago Geopolitical & Counterintelligence Analyst
Washington, DC $80,000.00-$90,000.00 1 day ago Washington, DC $110,000.00-$150,000.00 1 week ago Washington DC-Baltimore Area $20.00-$25.00 1 day ago Washington DC-Baltimore Area 3 months ago District of Columbia, United States $75,000.00-$95,000.00 1 day ago Centreville, VA $150,000.00-$175,000.00 6 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr