CSIRT Analyst

Us:

At Aretec, Inc., we are catalysts for change within the federal government landscape. Specializing in advanced analytics, machine learning, data analysis, cybersecurity, and business optimization, we empower federal agencies to achieve their most critical missions. As a premier partner and prime vendor, we deliver innovative, high-impact solutions that address complex challenges and drive national progress. Our commitment to excellence and innovation positions us at the forefront of transforming governmental operations, enhancing efficiency, and making a lasting difference in the lives of citizens.

You:

You are a proactive cybersecurity professional with a passion for defending organizations against cyber threats. With a strong ethical foundation and commitment to integrity, you thrive in fast-paced environments where quick analysis and decisive actions are critical. You bring a technical acumen, collaborative spirit, and a desire to continuously learn and innovate in the field of cybersecurity. Your focus is on minimizing and controlling the damage from cybersecurity events while working to prevent future incidents.

What We're Looking For:

We are seeking a CSIRT Analyst who will play a pivotal role in enhancing our cybersecurity capabilities and advancing the missions of our federal partners. In this role, you will be at the forefront of monitoring, recording, and reporting cybersecurity events and incidents. Your responsibilities will include:

• Leading Innovative Projects: Analyze traffic at the packet level, reconstruct network traffic, and recommend tools and hardware/software solutions to improve security monitoring capabilities.
• Collaborative Solution Development: Work closely with cross-functional teams, including incident handlers and malware analysts, to address and mitigate threats effectively.
• Strategic Impact: Develop Standard Operating Procedures (SOPs) and contribute to the strategic defense posture by providing in-depth incident analysis and response coordination.
• Stakeholder Engagement: Engage with various internal and external stakeholders including DHS components, ensuring timely incident tracking and compliance reporting.
• Mentorship and Leadership: Provide incident response guidance and maintain high standards of operational excellence within the Security Operations Center (SOC).

The Skills We're Looking For:

• Technical Expertise: Proficient in Microsoft Office Suite (Excel, Word, Outlook), Adobe Pro, Splunk, McAfee EPO, FireEye, and Security Orchestration and Automation Response (SOAR) tools.
• Analytical Mindset: Strong ability in traffic analysis, log analysis, behavior analysis, and pattern recognition.
• Leadership Abilities: Experience with tracking incidents through Swimlane, ServiceNow, and DHS systems.
• Effective Communication: Excellent verbal and written communication skills.
• Commitment to Mission: Strong desire to contribute to initiatives that have a national impact, especially through proactive cybersecurity measures.

The Expectations of the Job:

Day One:

• Orientation and onboarding into Aretec's culture, mission, and current cybersecurity operations at the Stennis Space Center, Hancock County, MS.
• Set up tools, access to Swimlane, ServiceNow, Splunk, and SOC monitoring systems.

Day Thirty:

• Actively participate in daily cybersecurity incident monitoring and reporting.
• Begin assisting in traffic and web log analysis, ensuring compliance with USCIS and DHS standards.

Day Sixty:

• Lead more complex investigations into security alerts and anomalous network activity.
• Draft or update SOPs based on operational experience.
• Engage directly with federal partners and SOC leadership on incident reporting and mitigation recommendations.

Day Ninety:

• Take full ownership of specific incident response areas.
• Identify process improvements and propose enhancements to cybersecurity operations.
• Mentor junior SOC staff on security incident analysis and reporting best practices.

Education:

Bachelor's degree in a related field OR at least 1+ year of experience in a related field.

Certifications:

Must have at least one: Network+, Security+, or CISSP.

Benefits:

• Health, Dental, and Vision Insurance.
• 401(k) Plan with Employer Match.
• Certification Stipends.
• Professional Development Opportunities.
• Paid Time Off and Holidays.
• Flexible Work Arrangements (within operational requirements).

Equal Opportunity Employer:

Aretec, Inc. is proud to be an Equal Opportunity Employer. All qualified individuals will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other legally protected characteristics.