Watch Floor Cybersecurity Analyst - Mid

Share this job as a link in your status update to LinkedIn.

Job Title

Watch Floor Cybersecurity Analyst - Mid

Location

Category

Information Technology

Job Type

Full-time

Staff

Education

High School / GED

Travel

None

Security Clearance Required

TS/SCI

Job Description

TMC Technologies is in search of a mid-level Cybersecurity Analyst to join the FBI's ESOC Watch Floor Operations Team, playing a crucial role in the FBI's cybersecurity defense strategy. Operating around the clock, 24/7, 365 days a year, this dynamic team ensures the timely detection and resolution of potential security incidents, thereby minimizing the impact of cyber threats on the organization. The watch floor team is responsible for actively detecting, monitoring, preventing, and analyzing real-time cybersecurity information, events, and threats. The candidate must be a US citizen and possess a minimum of an active Top Secret clearance with Sensitive Compartmented Information (SCI) eligibility to start due to federal contract requirements. This position is in support of a contract bid opportunity with expected award in mid-June 2025.

The Watch Floor Cybersecurity Analyst - Mid will have the following responsibilities:

- Responsible for monitoring computer networks for security issues.
- Investigating security breaches and other cybersecurity incidents.
- Document security breaches and assess the damage they cause.
- Work with the security team to perform tests and uncover network vulnerabilities, such as penetration testing.
- Fix detected vulnerabilities to maintain a high-security standard.
- Recommend best practices for IT security.
- Installing security measures and operating software to protect systems and information infrastructure, including firewalls and data encryption programs.
- Must be capable of conducting analysis, confirming intrusion information and creating a forensically sound duplicate of the files.
- Decrypts data and provides technical summaries and input.
- Examines recovered data for relevant information and performs dynamic analysis to include timeline, statistical, and file signature analysis.
- Performs real-time cyber defense handling tasks to support deployable Incident Response Teams (IRTs).

Job Requirements

- US Citizenship and active Top Secret clearance with SCI eligibility required
- Minimum of 5 years of relevant experience required
- Experience with scripting languages (Python, PowerShell, etc) required
- Bachelor’s Degree preferred
- Experience with security information and event management (SIEM) systems preferred
- Preferred certifications include:
GIAC Continuous Monitoring Certification (GMON)
GIAC Certified Incident Handler (GCIH)
GIAC Certified Forensic Analyst (GCFA)
GIAC Certified Intrusion Analyst (GCIA)
GIAC Network Forensic Analyst (GNFA)
GIAC Cloud Threat Detection (GCTD)
GIAC Cloud Forensics Responder (GCFR)
Microsoft Sentinel

We are equal opportunity/affirmative action employers, committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or protected veteran status, or any other protected characteristic under state or local law.