Cybersecurity ISSO / SOC Analyst Job at ClearanceJobs in Southport

divh2Cybersecurity ISSO / SOC Analyst/h2pOASYS, INC., a leading-edge government contractor, is seeking applicants for a Cybersecurity ISSO / SOC Analyst position to support our Army customer at MOTSU in Southport, North Carolina. Job responsibilities include supporting our Army customer by providing a critical cybersecurity role by ensuring continuous monitoring in accordance with the Department of Defense Risk Management Framework (RMF) and through system monitoring and analysis support for the detection of cyber incidents and providing recommendations on how to correct findings. This role combines the duties of an ISSO, Security Operations Center (SOC) Analyst, and Threat Analyst to ensure a holistic defense against emerging threats. Performs tasks in a variety of areas to include:/pulliServe as the ISSO in support of the ISO for assigned systems, ensuring full compliance with the RMF, DoDI 8510.01, and NIST SP 800-53 security control baselines./liliManage and maintain all RMF-related documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessment Reports (RARs), and Plan of Action and Milestones (POAMs)./liliConduct security control assessments and facilitate ongoing authorization (ATO/ATC) activities./liliLead vulnerability and compliance assessments using automated tools (e.g., ACAS, STIG Viewer) and ensure all findings are remediated or tracked via POAMs./liliMonitor and analyze security events and alerts generated by SIEM platforms, firewalls, IDS/IPS, and endpoint detection tools to identify potential threats and anomalous behavior./liliSubmits and track all service tickets submitted internally and externally for Operational Technology (OT) systems./liliAnalyze potential security incidents and investigate to determine the scope, impact, and root cause, and recommend effective remediation strategies, based on SIEM data analysis, in accordance with SLAs and OLAs./liliConduct research on the latest organizations environment threat vectors, attack methodologies, and adversarial tactics, techniques, and procedures (TTPs)./liliSupport the configuration, tuning, and optimization of security monitoring tools, including SIEM and threat detection platforms./liliGenerate detailed and actionable reports for leadership from SIEM platforms summarizing identified threats, incidents, and remediation steps./li/ulpMinimum requirements: Bachelors degree or higher, additional years of experience may be substituted for degree. Minimum of 10 years of work-related experience. Minimum of 2+ years of ISSO type experience. Security+, or other DoD 8570/8140 IAT Level II certification. Ability to work on-site daily. eMASS experience. Experience or familiarity with the ATO process. Familiarity with vulnerability management tools such as ACAS, STIG Viewer, and SCAP Compliance Checker. Familiarity with (DRAGOS, Corelight, Splunk, Snort). Proficiency in analyzing security events, logs, and alerts from various security tools (e.g., SIEM, firewalls, IDS/IPS). Familiarity with CVEs, threat intelligence frameworks (e.g., MITRE ATTCK), and vulnerability management practices. Knowledge of NETCOM policies, Cyber Tasking Orders (CTOs), and cybersecurity compliance requirements. A high-level performer with the ability to be proactive and respond rapidly to changing conditions in a fast-paced environment. May require CONUS and/or OCONUS travel to customer sites./p/div