Sev1Tech is looking for Network Operations and Security Center (NOSC) Tier 2 Specialist to play a role on a very large program involving network, cybersecurity, and cloud operations and engineering support services to a government customer with a significant mission for security and public safety. The program will encompass a wide range of tasks including but not limited to: Program Management; Monitoring, Analysis and Incident Response; Tier 3 Engineering and O&M; Field Engineering technical support; and Cloud operations.
Responsibilities Include But Are Not Limited To
- Monitor network, security, system, and cloud environments for events and perform triage analysis to identify or prevent incidents; perform network, security, system, and cloud incident response as needed
- Respond to incidents by collecting, analyzing, preserving digital evidence and ensure that incidents are recorded and tracked in accordance with NOSC requirements
- Work closely with other teams to assess - and provide recommendations for reducing - operational risks.
- Maintains records of monitoring and incident response activities, utilizing case management and ticketing technologies.
- Perform monitoring and analysis using Splunk analytics tools.
- Monitor dashboards for malicious events, phishing events, spoofing events, DDoS attacks, SQL Injection events, network connectivity events, system/device performance events and other potentially high-risk incidents
- Recognizes intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information
- Recommends changes to SOPs and related documentation.
- Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty
- Log all incident details and prioritization codes
- Provide Tier 2 support, including WAN and LAN connectivity, routers, firewalls, and security
- Support remote access platforms such as VPN, Terminal Services
- Assign unresolved incidents to higher Tier support or Internet service providers and product vendors to coordinate restoration of service and obtain the necessary information for recording/tracking the outage or degradation of service
- Keep component NOCs and SOCs informed of their incident's status at agreed intervals and continuously update incidents as needed
- Notify Government Leads and other stakeholders of high impact/priority failures using the appropriate escalation procedures
Minimum Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cyber Security or equivalent educational or professional experience and/or qualifications
- Minimum four (4) years of experience working in a NOC, SOC, or NOSC environment with Splunk and or other logging, monitoring, and dashboard systems
- Strong interpersonal skills and prior professional services experience in 24x7 operations
- Background in incident response, operations and threat intelligence
- Willing to work in a 24x7x365 operations center environment; may be expected to work some holidays and allow for flexible scheduling
- At least one security or network certification
- Must be able to obtain a Public Trust
- On-site presence is required for this role
Desired Qualifications
- Knowledge in incident response, vulnerability management, security intelligence, automation/ scripting and/or the operations of advanced networking and security tools
- Ability to handle multiple competing priorities in a fast-paced and high-pressure environment
- Ability to work effectively with technical and non-technical business users
- Desirable certifications include, but not limited to: CompTIA Security+, CCNA, SANs GSEC, GCIH, GCIA. EC Council C|EH
About Sev1Tech LLC
Founded in 2010, Sev1Tech provides IT, engineering, and program management solutions delivery. Sev1Tech focuses on providing program and IT support services to critical missions across Federal and Commercial Clients. Our Mission is to Build better companies. Enable better government. Protect our nation. Build better humans across the country.
Join the Sev1Tech family where you can achieve great accomplishments while fostering a satisfying and rewarding career progression. Please apply directly through the website at: https://www.sev1tech.com/careers/current-openings/#/ #joinSev1tech
For any additional questions or to submit any referrals, please contact: eileen.mckenzie@sev1tech.com
Sev1Tech is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.