Security Operations Center Metrics Analyst with Security Clearance
Base One Technologies
2024-11-07 08:43:26
Arlington, Virginia, United States
Job type: fulltime
Job industry: I.T. & Communications
Job description
Security Operations Center Metrics Analyst
Required Education/ Experience
BS or higher in IT related field, Business Analysis/Intelligence, Mathematics, Statistics, Computer Science or Economics and 3+ years' experience in equivalent work experience qualifies in place of degree. Primary Responsibilities
The Security Operations Center (SOC) Metrics Analyst will work directly with the Cybersecurity Operations Manager and the customer to ensure that effective, measurable metrics are collected, analyzed, and presented on both an ad hoc and continual basis. The candidate will be responsible for implementing a metrics program to ensure the metrics collected are impactful, and assist in driving sound management decisions. The ideal candidate will be familiar the Cyber Kill Chain methodology and how to correctly measure its effectiveness.
• Propose SOC metrics for government approval.
• Obtain and normalize data for usage
• Develop effectiveness and efficiency SOC metrics.
• Develop metrics to show return on investments.
• Develop Impact Metrics demonstrating the maturity of enterprise SOCs and/or to identify gaps.
• Develop a metrics scorecard to display the level of effectiveness of enterprise SOCs.
• Build dashboards using the NOSC infrastructure to support on-demand metrics representation.
• Track metrics initiatives and other projects for program PMO
• Report metrics and project progress in customer and/or regular PMO meetings
• Manage and/or assist with PMO projects Basic Qualifications
Candidates should also demonstrate the following: • Excellent analytical, decision-making and problem-solving skills are required. • Experience designing and producing metrics, KPIs, and data visualizations. • Experience creating interactive metrics dashboards using Power BI, Tableau, or other data visualization tools. • Experience generating reports, charts, and graphs. Strong written and verbal communication skills. • Exceptional interpersonal skills and written communication skills to frequently interact with all levels of the organization. • Excellent analytical ability to quickly gather facts, perform root cause analysis, and draw conclusions in collaboration with other team members. • Ability to work cross functionally within IT and the business. • Strong problem solving and analytical skills. • Strong organizational skills and attention to detail. • Ability to work in a fast-paced, demanding, and fluid environment. In addition to specific security clearance requirements, all Department of Homeland Security SOC employees are required to obtain an Entry on Duty (EOD) clearance to support this program. Must Have One of the Following J3 Certifications
SANS GIAC: GCIA, GMON, GCDA GPEN, GEVA, GWAPT, GSNA, GISF, GAWN, GXPN, GWEB Offensive Security: OSCP, OSCE, OSWP, OSEE ISC2: CISSP EC Council: CEH Preferred Qualifications
Familiarity with the management, operational, and technical aspects of IT Security in a complex enterprise environment, and experience working in a 24x7 security operations center (SOC) environment in the areas of Digital Media Analysis, Forensics, Incident Response, malware reverse engineering and/or knowledge management, etc. • Familiarity with tools such as Splunk and its dashboard capabilities. • Familiarity with Cyber Kill Chain/Intrusion Defensive Chain/Mitre ATT&CK methodologies. • Experience in a SOC environment • Experience developing Key Performance Indicators • Experience in gathering requirements from customers. • Experience with maintaining; integrating; preparing; and extracting, transforming, and loading (ETL) complex and/or large datasets for analysis. • Familiar with programming languages such as python, SQL, etc.