Mid Cyber Security Analyst-Intermediate Level (R-00169)

True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that said outcomes begin and end with our people, and that is what we have built, a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top tier services to our customers. In 2023, True Zero was recognized as a “Best Places to Work” in two categories ("Prosperous and Thriving" ($5MM – $50MM in gross revenue) and "Mid-Atlantic Region" (DC, DE, MD, NC, VA, WV)) and in 2022, was recognized as one of Inc. Magazine’s Top 5000 Fastest Growing Companies.

Cyber Security Analyst will be responsible for monitoring and responding to active threats and alerts occurring on customer networks and being part of a next generation Security Operations Center (SOC). Security Analysts will leverage various industry leading tools and methodologies to rapidly investigate potential threats, building new professional skills and capabilities along the way, all the while providing superior service to our customers. Selected candidates will also leverage and work with the MITRE ATT&CK framework, customer specific triage workflows, automation tools and SOAR platforms.

• Leverage various security tools to perform monitoring and analysis of security events/data to identify security risks and threats on customer networks.
• Utilize cyber hunt techniques to discover violations or threats.
• Implement, administer, and use cybersecurity tools, systems and applications; develop policies, standards, and guidelines to ensure secure enterprise-wise operations, performance and resiliency. 
• Deploy and secure security systems, application layer and traditional firewalls, vulnerability management and forensics utilities, and other infrastructure deployed and maintained by the Information Security Office. 
• Develop plans to safeguard information against unauthorized access modification, and destruction, and ensure organizational continuity of operations. 
• Work with SIEM solutions such as Splunk and others to perform investigation and triage of incidents.
• Working with your team and broader True Zero community to stay up to date on the latest security trends and threats to improve the effectiveness of security programs for our customers.
• Following processes and procedures and providing refinement suggestions for them.
• Performing detailed documentation efforts to report on all investigative steps performed and coordinating with external teams/personnel.

• Minimum 3-4 years relevant experience
• Bachelors Degree preferred 
• Security+/CISSP preferred
• U.S. Citizenship as this position is for a U.S. federal customer
• Hands on experience working with enterprise SIEM solutions, Splunk preferred.
• Working knowledge of networking principles (TCP/UDP, ICMP, etc.), application protocols (i.e. HTTP/HTTPS, DNS, DHCP, etc.) and common operating systems 
• Basic understanding of Active Directory and LDAP
• Ability to obtain then maintain a clearance may be required 

We’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:

- Competitive salary, paid twice per month

- Best in class medical coverage

- 100% of medical premiums covered by True Zero

- Company wide new business incentive programs

- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)

- 3 weeks of PTO starting + 11 Paid Holidays Annually

- 401k Program with 100% company match on the first 4%

- Monthly reimbursement of Cell Phone and Home Internet costs

- Paternity/Maternity Leave

- Investment in training and certifications to broaden and deepen your technical skills