Network Operations and Security Center (NOSC) Operations Analyst

Avint LLC is seeking an experienced and skilled NOSC (Network Operations and Security Center) Operations Analyst to join our team in support of the Continuous Diagnostics and Mitigation (CDM) program at the Cybersecurity and Infrastructure Security Agency (CISA) under the Department of Homeland Security (DHS). As a NOSC Operations Analyst, you will play a key role in ensuring the availability, integrity, and confidentiality of critical government systems and networks through network operations and security monitoring activities.

Responsibilities:

1. Network Monitoring and Incident Response:

• Conduct real-time monitoring of network traffic within the NOSC to identify potential security events or incidents.
• Perform in-depth analysis of logs and alerts, leveraging security tools (e.g., SIEM, IDS/IPS) to investigate and respond to security events.
• Lead incident response efforts by coordinating with internal teams, external stakeholders, and senior analysts.
• Develop and execute containment, eradication, and recovery strategies to mitigate the impact of security incidents.

2. Operations Support and Troubleshooting:

• Monitor the availability, performance, and integrity of applications, network connections, and infrastructure systems.
• Proactively identify and resolve operational issues, conducting root cause analysis and implementing appropriate remediation measures.
• Provide Tier 2 support, serving as an escalation point for complex technical issues and collaborating with Tier 1 help desk support.

3. Security Event Analysis:

• Conduct advanced analysis of security events and alerts, utilizing threat intelligence and industry best practices to uncover sophisticated threats.
• Investigate and respond to potential advanced persistent threats (APTs), targeted attacks, and insider threats.
• Develop and optimize security monitoring use cases, rules, and signatures to improve detection capabilities.

4. Collaboration and Reporting:

• Collaborate with cross-functional teams to gather information, share insights, and ensure incidents and events are appropriately documented.
• Prepare comprehensive incident reports, including incident timelines, root cause analysis, and recommendations for proactive security improvements.
• Communicate effectively with internal and external stakeholders, providing updates on incidents, investigations, and mitigation efforts.

5. Continuous Improvement and Innovation:

• Contribute to the enhancement of security monitoring processes and procedures, developing and implementing efficient workflows.
• Assist in the development and maintenance of standard operating procedures (SOPs) and guidelines for NOSC operations.
• Stay abreast of emerging cyber threats, security technologies, and industry trends to drive continuous improvement and innovation.

Requirements

• Must be a US citizen and pass a background investigation
• Able to obtain and maintain a DHS Suitability/Entry on Duty (EOD)
• Bachelor's degree in Computer Science, Information Systems, or a related field (relevant experience may substitute for a degree).
• Required: a security certification such as CompTIA Security+
• In-depth knowledge of network protocols, infrastructure, and security best practices.
• Extensive experience in network security monitoring and incident response, including analysis of logs, alerts, and network traffic.
• Proficiency with security monitoring tools (e.g., SIEM, IDS/IPS), threat intelligence platforms, and malware analysis tools.
• Strong technical troubleshooting skills and experience with operations support, including application availability and network connectivity.
• Demonstrated understanding of advanced threats, APTs, and insider threats.
• Excellent analytical and problem-solving abilities with a focus on continual improvement.
• Effective written and verbal communication skills, including the ability to convey complex technical information to both technical and non-technical audiences.
• Effective collaboration skills, with proven experience working in multidisciplinary teams.
• Flexibility to work rotating shifts, weekends, and occasional on-call duties as needed.
• Ticketing Software
• Azure or AWS Hands-on Experience

Benefits

Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, to a new Open Time Off Policy and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!

Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity and Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.