NOSC Tier 1 Specialist

Sev1Tech is looking for a Network Operations and Security Center (NOSC) Tier 1 Specialist to provide network, cybersecurity, cloud operations, and engineering support services with a significant focus to provide IT security and public safety.

Requirements

• Monitor network, security, system, and cloud environments for events and perform triage analysis to identify or prevent incidents;
• Respond to incidents by collecting, analyzing, preserving digital evidence, and ensure that incidents are recorded and tracked in accordance with NOSC requirements;
• Work closely with other teams to assess and provide recommendations for reducing operational risks.
• Maintain records of monitoring and incident response activities, utilizing case management and ticketing technologies such as ServiceNow;
• Perform monitoring and analysis using Splunk or other analytics tools;
• Monitor dashboards for malicious events, phishing events, spoofing events, DDoS attacks, SQL Injection events, network connectivity events, system/device performance events, and other potentially high-risk incidents;
• Recognize intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information;
• Recommend changes to SOPs and related documentation;
• Generate end-of-shift reports for documentation and knowledge transfer to subsequent analysts on-duty;
• Log all incident details and prioritization codes;
• Provide “touch level” Tier 1 support, including WAN/LAN connectivity, routers, firewalls, and security;
• Support remote access platforms such as VPN and Terminal Services;
• Assign unresolved incidents to higher Tier support or internet service providers and product vendors to coordinate restoration of service and obtain the necessary information for recording/tracking the outage or degradation of service;
• Keep component NOCs and SOCs informed of their incident's status at agreed intervals and continuously update incidents as needed;
• Notify Government Leads and other stakeholders of high impact/priority failures using the appropriate escalation procedures;
• Strong interpersonal skills and prior professional IT services experience in a 24x7 operations enterprise environment;
• Background in incident response, operations and threat intelligence;
• Willing to work in a 24x7x365 operations center environment; may be expected to work some holidays and allow for flexible scheduling;
• On-site presence may be required for this role;
• Able to provide proof of U.S. Citizenship in order to obtain a Dept of Homeland (DHS) EOD (Entrance on Duty) clearance; Active DHS EOD preferred;

Benefits

• Full Time W/Benefits Ret Match
• Health Insurance
• Paid Time Off
• 401(k)
• Flexible Scheduling
• Holiday Pay