ClearFocus Technologies

SOC Analyst

ClearFocus Technologies  •  Washington, DC (Onsite)  •  1 month ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description


ClearFocus Technologies, a HUBZone certified company, is located in Leesburg, VA. We specialize in cybersecurity and support multiple government and commercial clients for a variety of missions. We value our clients, integrity and employees and believe a single person can make a difference!  

We are committed to attracting and retaining the best and brightest talent who desire to work with industry leading technology to stay on top of their profession. We provide an excellent benefit package which includes medical, dental, vision, paid time off, 401(k), paid professional development reimbursement and more! 

We are seeking SOC Analyst for multiple opportunities that are 100% onsite in Washington, DC. ALL APPLICANTS MUST HAVE AN ACTIVE TOP-SECRET CLEARANCE. NO EXCEPTIONS!!!!

100% Onsite w/situation telework
Current Shifts that are available (before future move to 12-hour shifts):

Day Shift:

Monday – Friday 6am-2pm

Swing Shift:

Monday – Friday - 2pm – 10pm

Night Shift:

Sunday – Thursday: 10pm – 6am

Tuesday – Saturday: 10pm – 6am

Must be willing to work 12-hour shifts
Sun-Tues and every other Wed 
Thur-Sat and every other Wed 
Day Shift: 7am-7pm
Night Shift: 7pm-7am

You will be required to take an in-person hands-on keyboard interview assessment to be considered 

90-day probation period

MUST be proficient in the following areas
  • Must have experience supporting 24x7x365 SOC or Cyber Watch operations.
  • Must be a self-starter and display the ability to research and find the answer “On your own”.
  • Must be able to work with minimal to no supervision.
  • Must be able to learn new technologies and techniques provided by the SOC Chief as well as “On your own”.
  • Must be able to read, write, and comprehend at the intermediate level.
  • Must be able to read, comprehend, and apply standard operating procedures, playbooks, and directives provided by the SOC Chief.
  • Must have and understand and applied knowledge of the full Triage process to determine if an event is a true positive or false positive. 
  • Must be able to hypothesize during an event to determine an outcome.
  • Must have basic - intermediate understanding of various cyber-attacks (new and old) across various platforms and environments including Active Directory, Windows, Linux. Cloud is a plus.
  • Must know how to perform basic-intermediate Splunk searches in Splunk Enterprise Security to obtain various information as needed and/or requested by senior leadership
  • Must know how to perform basic-intermediate threat hunting in Splunk for various cyber-attacks including, but not limited to: User Behavior Analysis, Privileged User activity, Advanced Persistent Threat (APT) activity, and other ad hoc searches as needed and/or requested
  • Must be able to identify root-cause using various native and security tools (Splunk Enterprise Security, Trellix, ACAS, SolarWinds)
  • Must be able to read and comprehend various log types.
  • Must be able to correlate logs to investigate various cyber events and incidents using native and security tools (Splunk Enterprise Security, Trellix, ACAS, SolarWinds)
  • Must have basic - intermediate understanding and applied knowledge of networking fundamentals to include, but not limited to most common ports and protocols, what they are, and how they work)
  • Must have a basic - intermediate understanding and applied knowledge of command line tools to obtain information needed for triage analysis including, but not limited to windows command line, Linux command line, PowerShell, etc.
  • Prior Help desk and system administrators with ticket handling, Active Directory, and command line scripting experience preferred and are encouraged to apply. 

Education Requirements

A bachelors or higher degree is highly preferred and a DOD IAT II certification

Clearance Requirements

Active Top-Secret with SCI/Q eligibility
ClearFocus Technologies

About ClearFocus Technologies

ClearFocus® Technologies provides advanced cybersecurity services that secure our nation’s most sensitive assets. Our company provides Security Engineering, Security Operations and Security Assessments solutions which are augmented by our advanced capabilities including Cyber Threat Intelligence, Cyber Hunt, Cyber Deception, Adversary Emulation, Digital Forensics, and Threat Analytics. We have extensive experience implementing Risk Management Framework (RMF) and Zero Trust processes; protecting Industrial Control Systems; and designing, operationalizing and staffing Security Operations Centers (SOCs). ClearFocus is approved for all five GSA Highly Adaptive Cybersecurity Services (HACS) subcategories, and we are an ISO 9001:2015, ISO 20000-1: 2018, ISO 27001: 2022, CMMI-SVC ML 2 and SBA Certified HUBZone company supporting the missions of 22 federal agencies and over 30 commercial clients.

Industry
Unknown
Company Size
11-50 employees
Headquarters
Leesburg, VA
Year Founded
2012
Website
clearfocustech.com
Social Media