Senior Security Information Event Management (SIEM) Analyst

caci
Apply Now ↗
📍 MO📍 St Louis📍 St Louis, MO, United States📍 usContract

About this role

Company Description

CACI provides information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian clients. A member of the Fortune 1000 Largest Companies and the Russell 2000 Index, CACI provides dynamic careers for approximately 14,900 employees working in over 120 offices worldwide.

Job Description

CACI has an immediate opening for a Senior Security Information Event Management (SIEM) Analyst to support a Government client in Computer Network Defense. The candidate should have be familiar with a wide range of security tools and understand basic security fundamentals


Under general supervision, the Senior SIEM Analyst will:


 Monitor incoming event queues using security management tools.
 Identify, categorize, prioritize, and investigate correlated events.
 Perform investigation and triage of events and incidents and escalate according to SOPs.
 Monitor/and work ticket queue for events and incidents.
 Maintain shift logs with relevant activity.
 Document investigation results and provide relevant details for final analysis.
 Develop reports, dashboards, real-time rules, filters, and active channels, etc.
 Provide event/incident procedure, long-term analysis, and investigation into NGA network activity and provide investigation reports.
 Provide content development to include reports, dashboards, real-time rules, filters and active channels.
 Configure SIEM tool performance and event data quality to maximize SIEM system efficiency.
 Assist NGA cyber security teams with device event correlation.
 Develop and institute standard procedures for the “front-end” operation of the SIEM system as directed by the government.
 Assist Network Analysts with the development of rules, filter, active channels, and onboarding of new programs.

Qualifications

Required Qualifications:


• Must have current TS/SCI and able to pass CI polygraph with 60 days of hire
• A Master’s degree
• 10 or more years of experience in related field with minimum 6 years in SIEM tool analysis
• DoD 8570 Management Level III
• Event and Incident Analysis with ArcSight
• Filtering of event data into dashboards
• Reporting formats
• Correlation Rule Development with ArcSight, SourceFire or other IDS/ SIEM tool
• Development experience in Smart/Flex Connectors
• Content Analysis, Development and Testing
• Web Content Filtering Analysis, Development and Testing

Desired Qualifications:


• Master’s degree in Computer Information Systems, Computer Science, Information Technology, Information Science, Information Systems, or a related academic discipline of science, technology, engineering, or mathematics
• ISC2 recognized professional certifications
• SIEM Content Engineering Experience
• Knowledge of technical writing and documentation and the ability to map processes and procedures back to roles and responsibilities within the organization

Education and Experience:


Master’s degree with 10 or more years of related experience.

Additional Information

All your information will be kept confidential according to EEO guidelines.

Frequently Asked Questions

Is the salary disclosed for the Senior Security Information Event Management (SIEM) Analyst position at caci?
The salary for this Senior Security Information Event Management (SIEM) Analyst role at caci is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Where is the Senior Security Information Event Management (SIEM) Analyst position at caci located?
This Senior Security Information Event Management (SIEM) Analyst role at caci is based in MO, St Louis, St Louis, MO, United States, us. The position is listed as on-site or hybrid. Check the full job description or apply directly to confirm the work arrangement.
Is the Senior Security Information Event Management (SIEM) Analyst role at caci full-time or part-time?
This is listed as a Contract position. It is posted as a Senior Security Information Event Management (SIEM) Analyst role at caci.
How do I apply for the Senior Security Information Event Management (SIEM) Analyst position at caci?
Click the "Apply Now" button on this page. You will be redirected to caci's official application portal hosted on smartrecruiters where you can submit your application directly.
When was the Senior Security Information Event Management (SIEM) Analyst job at caci posted?
This Senior Security Information Event Management (SIEM) Analyst position at caci was posted on Feb 5, 2015. Apply as soon as possible — early applications are often reviewed first.
Senior Security Information Event Management (SIEM) Analyst
caci
Apply for this role ↗

You'll be redirected to caci's official application page on SmartRecruiters.