SOC Analyst
San Antonio, USA Design / Civil engineering / Industrial engineering
Job description
Position Description:
CGI Federal is looking for Cyber Security Analyst to support our Managed Security Service Center based in San Antonio, TX. We provide Incident Management and Intrusion Detection services, along with Threat Hunting and in-depth analysis to our customers. Qualified applicants will be on the forefront of incident response where they will utilize the latest in network security technology to provide Computer Network Defense and Information Assurance (IA) support to CGI Federal and its customers.
This position can be located at any CGI office in the U.S, preferred location are San Antonio, TX and Huntsville, AL; however, a hybrid working model is acceptable.
Your future duties and responsibilities:
• Understand and maintain the appropriate knowledge of tools, security procedures, and services within the MSS.
• Ensure that event analysis and incident reports are documented and quality control is applied to ensure accuracy.
• Assist in developing and maturing the future services and capabilities of the MSS, such as Forensics, Threat Management, Penetration Assessments, Tool Management, and more.
• Identify improvements within processes, procedures, policies, staffing, training, and tools to improve efforts and daily operations.
• Ensure that all procedures and operations are carried out as tasked.
• Responsible for shift activity logging and daily operations in terms of making sure that daily shift responsibilities are completed.
• Understand & contribute to the improvement and direction of MSS objectives, direction, and procedures.
• Maintain the ability to complete all MSS daily operations and procedures, and ensure the proper escalation and leadership knowledge is provided.
• Ensure the proper documentation of tickets, shift documentation, correspondence, and escalations.
• Ensure events are handled at detection time according to established procedures.
• Demonstrate excellent communication and client care skills by documenting all activities within our client delivery systems and communicating with client representatives in a timely manner.
• Stay informed of current events in the security industry including the latest exploits and threats as well as preventative measures, remediation, and restoration techniques.
• Act as the escalation point for client requests for information and presence.
• Mentor team members to improve quality and consistency of security information analysis of network traffic.
• Assist analyst investigation and ticket creation efforts. Provide daily monitoring and alerting of events that occur within the near real time environment.
• Ensure the proper mitigations and vulnerability management are recommended and escalated to management
Required qualifications to be successful in this role:
• Graduation with a degree from a university with specialization in Computer Sciences or a related discipline and/or a minimum of three to five (3 - 5) years of directly related experience and demonstrated ability to carry out the functions of the job.
• Experience working in an IT Security Operations Center using SANS methodology
• Experience and extensive knowledge of Security Information Event Management
• Experience in Intrusion Detection or Prevention Systems
• Knowledge of: TCP/IP, computer networking, routing and switching
• Experience in Linux/UNIX and Windows based devices at the System Administrator level
• System log forensics (Syslog, Event Viewer)
• Strong troubleshooting, reasoning and problem solving skills
• Team player, excellent communication skills, good time management
• Organizational skills and the ability to work autonomously with attention to processes
• Ability to speak and communicate effectively with peers, management and clients
• Ability and experience in writing clear and concise technical documentation
• Ability to speak and write fluently in English
Desired qualifications/non-essential skills required:
SIEM/SOAR experience (ArcSight, QRadar, Splunk, Palo Alto etc.)
• Experience using ticketing systems such as ServiceNow, JIRA etc.
• Security +, Network +, CISSP, CEH, GCIA, GCIH, CISM, SPLUNK Training highly valued
• Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions
CGI is required by law in some jurisdictions to include a reasonable estimate of the compensation range for this role. The determination of this range includes various factors not limited to skill set, level, experience, relevant training, and license and certifications. To support the ability to reward for merit-based performance, CGI typically does not hire individuals at or near the top of the range for their role. Compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range for this role in the U.S. is $69,700.00 - $154,300.00.
CGI Federal's benefits are offered to eligible professionals on their first day of employment to include:
• Competitive compensation
• Comprehensive insurance options
• Matching contributions through the 401(k) plan and the share purchase plan
• Paid time off for vacation, holidays, and sick time
• Paid parental leave
• Learning opportunities and tuition assistance
• Wellness and Well-being programs
Due to the nature of this government contract, US Citizenship is required.
#CGIFederalJob
Skills:
· Computer Security
· English
· IT Security
· CompTIA Cyber Security Analyst
· Incident Response
· Network Security
What you can expect from us:
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.
Qualified applicants will receive consideration for employment without regard to their race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, pregnancy, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, height, weight, or any other legally protected status or characteristics.
CGI provides reasonable accommodations to qualified individuals with disabilities. If you need an accommodation to apply for a job in the U.S., please email the CGI U.S. Employment Compliance mailbox at US_Employment_Compliance@cgi.com . You will need to reference the Position ID of the position in which you are interested. Your message will be routed to the appropriate recruiter who will assist you. Please note, this email address is only to be used for those individuals who need an accommodation to apply for a job. Emails for any other reason or those that do not include a Position ID will not be returned.
We make it easy to translate military experience and skills! Click here to be directed to our site that is dedicated to veterans and transitioning service members.
All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary dependent upon specific assignment and/or level of US government security clearance held. Dependent upon role and/or federal government security clearance requirements, and in accordance with applicable laws, some background investigations may include a credit check. CGI will consider for employment qualified applicants with arrests and conviction records in accordance with all local regulations and ordinances.
CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI’s legal duty to furnish information.