What you’ll be doing...

As a Security Analyst for the Government Network Operations and Security Center (GNOSC), your primary responsibility will be to ensure federal managed security customers receive professional service and prompt response to their needs. You will support the 24x7 Floor Operations/Service Desk function for our managed security service customers – this means initiating and working incident management tickets and responding to trouble calls/emails from customers.

You are often the first to see an issue, or the issue may have been escalated from another team. You’ll perform security incident analysis, handle change management, and perform device and health monitoring as well as systems maintenance.

  • Performing active real-time security monitoring through Splunk.
  • Handling day-to-day triage, investigation, and mitigation of security threats, as well as short-notice ad hoc work, and following them through to completion.
  • Producing analytics investigations to determine if there is a real security incident or a false positive, notifying customers as needed, and sending customers standardized emails specifying the steps they need to take to fix the problems.
  • Conducting advanced security event detection and threat analysis for complex and/or escalated security events.
  • Providing log/network/malware/device analysis and making recommendations for remediation of security vulnerability conditions.
  • Delivering critical value to the RSA Security Analytics management service, leveraging their extensive knowledge to provide context about security events.
  • Providing recommendations for remediation actions and suggestions for implementing best practices to improve standard processes and procedures.
  • Playing a key role in helping us protect our business and our customers.
  • Processing change requests relating to security devices such as firewalls, intrusion detection systems and RSA SecurID servers.
  • Performing device and health monitoring including troubleshooting network connectivity problems concerning managed security devices, often working with Advanced Support Team engineers and/or vendors/partner technology teams on device replacement/reconfig.
  • Preparing shift turnover and shift reports to ensure continuous workflows between shifts.
  • Developing internal and external documentation, such as detailed procedures, playbooks, and operational metrics reports.
  • Coordinating with Senior Analysts and/or Duty Manager for high priority incidents.

This position will be working the overnight (MID) shift 11PM - 7AM.

What we’re looking for...

You'll need to have:

  • Associate's degree or two or more years of work experience as a security analyst investigating network security threats
  • Three or more years of relevant work experience.
  • Experience with security incident monitoring and threat investigations.
  • Experience with packet capture/payload analysis, incident handling from a dashboard/ticketing system.
  • Experience in a Security Operations Center.
  • Willingness to work overnights 11PM - 7AM.
  • Willingness to work one weekend a month.
  • Active government issued security clearance at a secret level, or eligibility to obtain and maintain this clearance.

Even better if you have:

  • Bachelor's degree.
  • Security vendor technology experience.
  • SANS or other Security industry certifications such as GCIA, GCIH, GREM, or GPEN ITIL Foundations training/certification.
  • Hands-on experience with SIEM platforms, such as Security Analytics, Splunk, or ArcSight, Firewalls, Intrusion Detection/Prevention Systems, Proxies, Web Applications, and/or Penetration Testing.
  • Strong network, TCP/IP and endpoint skills.
  • Linux and scripting experience.
  • Experience with ArcSight, Splunk, Kibana Elasticsearch, Cisco ASA, JunOS, Fortinet, Sourcefire, Checkpoint, Tripwire, Palo Alto, Bluecoat Proxy.
  • Knowledge of ITIL and/or previous work in an ISO operating environment.
  • Understanding of databases and windows processes.
  • Strong understanding of attack vectors and how systems are compromised.
  • Capability to effectively multi-task, prioritize work, and handle competing interests.
  • Experience performing QA functions.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences,including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.