SOC Analyst

ERT is seeking a SOC Analyst to support work at the NOAA National Environmental Satellite Data and Information Service (NESDIS) Office of Satellite and Product Operations (OSPO). This position will support OSPO's Security Management Center (SMC) Team in responding to security incidents and other emergency actions. Duties include reviewing and analyzing IT system audit logs, responding and managing Incident Response (IR), and coordinating with the systems' ISSOs and the NOAA Cybersecurity Center (NCSC). This position is located on-site at NOAA's Satellite Operations Facility (NSOF) in Suitland, MD.

A minimum of 6 years of experience in the following:

• Database Management System (DBMS) administration, design, and implementation experience
• Hands-on experience with SQL, NoSQL DBMS tools, Splunk, and Security Information and Event Management (SIEM) tools (e.g., ArcSight and Tripwire)
• Advanced programming languages such as Python, C++, JavaScript, HTML, and PHP
• Forensic analysis (network and/or digital), including collection of artifacts and familiarity with chain of custody procedures
• Familiarity with Vulnerability Management (VM) processes, including VM tool experience and analysis of VM scans
• Ability to review and track remediation of vulnerabilities and identify DISA STIG gaps via multiple scan resources
• Previous experience supporting DHS CISA Binding Operational Directives (BOD) procedures, including system notification, impact analysis, tracking, documented remediation, and CISA reporting
• Proficiency with tools such as Splunk, ArcSight, Tripwire, Tenable Security Center, IBM BigFix, FireEye, and CSAM (highly desired)
• At least one of the following certifications: Security+, Network+, GSEC, GCIA, GCIH, C|EH, GCFE, or Splunk Fundamentals I or II
• Willingness to be