Security Operations Analyst

Security Operations Analyst 

Tuknik Government Services , LLC (TGS), a Koniag Government Services company, is seeking an experienced SOC Analyst to support TGS and our government customer in Lakewood, Colorado. The shift is Wednesday to Sunday from 1130am MT to 8pm MT.  

Position Overview:    
Work in a Security Operations Center (SOC) environment, providing detailed documentation of reported incidents utilizing ServiceNow.  The candidate will function as a SOC Analyst performing triage, investigations, and responding to a wide variety of alerts.  

All employees are considered mission critical and are expected to report even during inclement weather conditions. 
 

We offer competitive compensation and an extraordinary benefits package including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more.

Essential Functions, Responsibilities & Duties may include, but are not limited to:

• Providing 24/7/365 monitoring and analysis of security event alerts across the enterprise network.
• Monitoring agency systems and daily log events to identify potential security threats. Sources include, but not limited to, sensor alert logs, firewall logs, content filtering logs, and Security Information and Event Management logs.
• Reviewing incoming alerts, investigating, and ticketing all identified potential security threats using agency incident response ticketing platform.
• Prioritize all incoming alerts and responds accordingly in a timely manner.
• Validating traffic and/or network activity (per alerts/logs) as anomalous in accordance with agency standards and procedures.
• Identifying, investigating, and escalating potential security threats to senior agency resources when needed.
• Measuring and modeling traffic, while identifying patterns and ports.
• Producing reports, both contractual and ad hoc, providing information on events, trends, issues, and activity as requested by the federal customer.
• Providing data for inclusion in the agency’s CISA report.
• Utilize OSINT tools to identify and mitigate potential cybersecurity threats to the customer’s network.
• Identifying the necessity for, and implementation of, the creation of new intrusion detection signatures.

Work Experience, Knowledge, Skills & Abilities:

• Candidate must have a minimum of 2-4 years of experience as an analyst in a security operations center or similar environment.
• Working knowledge of Security Operations Center systems and the role such systems play in detecting intrusion attempts.
• Documented experience creating custom intrusion signatures to detect specific network traffic anomalies.
• Demonstrated experience in populating sensors with newly available signatures when responding to events or management requests.
• Knowledge of potential threat reporting and tracking by means of at least one large-scale ticketing system (ServiceNow, CAPRS, or other similar system).
• Ability to utilize email, instant messaging, and other monitoring tools to effectively navigate through the incident response process.
• Strong oral presentation skills and the ability to articulate English in a clear and concise manner.
• Demonstrated experience with Windows Operating System and Microsoft 365 tools.

Requirements

• High School Diploma accompanied with related advanced training and certifications in cybersecurity or a related field. BS/BA degree preferred.
• Required certifications include CompTIA A+ and CompTIA Security+. Documented proof of certifications is required prior to the start of employment.
• Experience with Windows Operating System and Microsoft 365 tools.
• Great Written and Communication Skills - Must have the ability to convey information clearly and effectively
• Must live within 2 hours travel of the designated Security Operations Center for which they are applying.
• Must be able to obtain a Public Trust clearance.

Nice-to-haves

• Bachelor’s or Master’s degree in computer science, or cybersecurity, or information technology.
• Other advanced certifications such as Cybersecurity Analyst+ (CySA+), Certified Ethical Hacker (CEH), or Certified Information System Security Professional (CISSP)

Our Equal Employment Opportunity Policy

The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, sex, sexual orientation, gender, or gender identity (except where gender is a bona fide occupational qualification), national origin, age, disability, military/veteran status, marital status, genetic information, or any other factor protected by law.  We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits and all other privileges, terms, and conditions of employment.

The company is dedicated to seeking all qualified applicants. If you require accommodation to navigate or to apply for a position on our website, please contact Heaven Wood via e-mail at [email protected] or by calling 703-488-9377 to request accommodation. 

 Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com.

Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352