Cyber SOC Analyst - ADV0003CL - ERC with Security ...

For more than 30 years, ERC has been delivering the advantage needed to solve our customers'' and the nation''s toughest challenges. A trusted partner to the Defense and Space communities. We provide the advanced engineering, innovative technology, and subject-matter expertise to deliver the mission results our customers need to keep the nation safe and secure. Our unique solutions enhance readiness, optimize performance, and help ensure success in the air, on the ground and in space. An essential part of our success is our corporate culture built on respect, empowerment, and collaboration. Our culture elevates our people, ensuring they provide best-in-class service and solutions to our customers. We always strive to do the right thing. We believe that are our people are our best asset and human connection our greatest strength. Our ~2,000 employees work on the most critical missions in the U.S. Army, U.S. Air Force (USAF), NASA, and Missile Defense Agency (MDA). We provide support for Test and Evaluation (T&E), Modeling & Simulation, Agile Software Development, Systems Engineering, and more. Our teams'' current projects range from engineering and logistics support for vital space hardware to platform and weapons modeling, simulation, and engineering. Check us out on ERC.US Your role: The Cyber SOC Analyst supports the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES) contract with work at Schriever Space Force Base, Colorado Springs, Colorado. What you''ll do all day: * Perform Defensive Cyber Operations (DCO)/Cyber Security Service Provider (CSSP) duties outlined in Evaluator Scoring Metrics (ESM). * Perform cybersecurity duties on customer networks (proactively and reactively) to improve enterprise-wide security posture. * Perform and analyze vulnerability scans utilizing Assured Compliance Assessment Solution (ACAS/Nessus) scanning tool. * Perform and analyze network security threat/impact assessments. * Utilize SIEM tool to analyze and correlate event logs from network security devices and mission critical infrastructure (e.g., network and host-based security systems, firewalls, routers, switches, servers, workstations, etc.). * Search for indicators of compromise and develop SIEM content/signatures to detect known attack patterns. Analyze and interpret log data within SIEM tools (e.g., ELK, ArcSight, etc.) and make recommendations for improvements. * Review data of ongoing intrusions or cybersecurity incidents and report, analyze, and document/report the findings in accordance with CJCSM 6510.01B guidelines. * Analyze vulnerabilities, attack vectors, and emerging technologies against known adversaries/exploits and disseminate guidance to improve network defensive posture. * Support the development, establishment, review and update of DCO procedures, processes, manuals, and other documentation. * Support Anti-Malware program, forward alerts and warnings to customers, respond to customer malware reports and assist in implementing protective/anti- malware measures. * Assist with host-based security across mission systems utilizing DoD Host-based Security System (HBSS)/Enterprise Security Solutions (ESS), to include: antimalware, host-based intrusion protection system, data loss prevention, and rogue system detection. * Support Incident Response across mission systems IAW DoD regulations and instructions. * Lead event/incident investigations from start to conclusion, to include gathering data, analysis, and reporting. * Create, update, and manage queries and dashboards pertaining to HBSS/ESS, ACAS, and related security tools. * Support DCO operations by mentoring and training junior DCO analysts. * Have experience with most MS Office applications (Word, Excel, PowerPoint, and Visio). * Be able to multi-task and prioritize various projects and assignments in a dynamic work environment in order to meet scheduled/unscheduled customer requests. * Be willing to travel 25% of the time. * Be willing to work rotating shifts in a 24x7x365 operational environment and respond quickly to emergencies as needed. You will love this job if you: * Are a self-starter and require little oversight to complete given tasks * Enjoy a fast-paced work environment * Love working with diverse groups of individuals, including engineers and technicians * Are good at communicating with people * Have a positive attitude * Enjoy multitasking Minimum requirements for this position: Must have one of the following combinations of education and experience: HS Diploma (or GED) and 2 years of general experience; Associate''s degree and 0 years of general experience; * Must have 2.5 years of directly related experience Must have a current DoD 8570.01-M IAT Level II certification with Continuing Education (CE) - (CySA+, GICSP, GSEC, Security+ CE, SSCP) * Must have a DoD 8570.01-M CSSP Analyst, Incident Responder, and Auditor certification (CEH or CySA+ cover all three) * Must have an active DoD Secret Security Clearance * Must be able to obtain and active DoD Top Secret/SCI Security Clearance Desired skills and experience for this position: * Have a Bachelor''s degree, or higher, in Cybersecurity, Computer Science or related field * Have experience with security analysis and solutions in a WAN/LAN environment to include Routers, Switches, Network Devices, and Operating Systems (e.g., Windows, and Linux) * Have experience with other Security Operations Centers (SOC)/DCO tools/applications, such as Firewalls, Intrusion Detection Systems / Intrusion Prevention Systems, Network Security Manager, Bluecoat, Barracuda, etc. * Have experience performing security compliance scans across a WAN (ACAS/Nessus preferred) * Have a background in configuration, troubleshooting, and deployment of host-based security (HBSS/ESS preferred) * Be able to mentor and train personnel in an evolving, high-paced environment * Be familiar with DoD Security Operations Centers (SOC) * Be familiar with DCO/Cybersecurity Service Provider (CSSP)-guiding security policies and procedures What we offer: * Competitive salaries. * Continuing education assistance. * Professional development allotment. * Multiple healthcare benefit packages. * 401K with employer matching. * Paid time off (PTO) along with federally recognized holiday schedule. * This position is expected to pay $62,000 to $98,000 annually, depending on experience, education and any certifications that are directly related to the position.

Created: 2025-11-15