Cyber Security Operations Center Analyst – Los Angeles (San Pedro)
Sierra Cybernetics is seeking a Cybersecurity Operations Center Analyst to work for us supporting our Port of Los Angeles (POLA) client in San Pedro, CA.
Work is fully on- site at the POLA facility, M-F, 7AM to 4 PM.
This is expected to be a one-year assignment, but with the potential to go longer.
You must be a US citizen and will undergo a background check.
A valid security clearance is preferred, but not required.
REQUIREMENTS
Minimum two (2) years of incident handling, security architecture, malware analysis, or similar experience is required
o Prefer lower end of experience range, because this is strictly a hands-on cybersecurity monitoring/analyst position.
Prefer at least one of the following certifications (should be current): Security+,
GSEC, GCIA, GCIH or CISSP or equivalent, but is not required
o College graduate with computer science, computer engineering, or forensic degree may be considered
EXAMPLE OF DUTIES
Ability to technically interpret security events from: firewalls, endpoint protection, intrusion prevention/detection systems, security information and events management (SIEM), proxies, advanced persistent threats, email systems, servers (physical and virtual), databases and packets
Ability to interpret common attacks and exploits including but not limited to: Denial of Service, Domain Name Systems, malware infections, exploit kits, drive- by compromises, spear phishing, and/or zero days
Ability to analyze and reverse engineer malware packages to assess threats and indicators of compromise
Ability to create, correlate and modify advanced SIEM use-cases to trigger notifications on all severity levels of incidents
Ability to develop, analyze and interpret programming of malicious codes
Ability to demonstrate mastery of Tier 1 and Tier 2 Security Operations Center (SOC) Analyst responsibilities
Ability to reliably monitor and analyze specified data sources and incidents
Must have technical experience and knowledge on network and systems administration
Ability to consistently follow incident monitoring processes and procedures
Ability to document and communicate incident status updates, for non-technical personnel
