Security Analyst University Grad

US - CA - Carlsbad Ref #8190 26-Feb-2021

Job description

Bigger challenges. Bolder ideas. Global impact. At Viasat, we’re on a mission to deliver connections with the capacity to change the world. We’re the company behind the world’s fastest satellite internet service, with technology that’s helping to bridge the digital divide and improve life for our customers around the globe. By providing powerful new ways for people to connect with one another, gain greater access to education, entertainment, medical research, commerce, and much more, our team is empowering millions of customers worldwide.  

We’re looking for passionate, innovative professionals to join our team and connect the world to more. You’ll work in a collaborative and inclusive environment that values diverse perspectives and continuous learning, and provides industry-leading benefits with unmatched opportunities for career growth. Our team is fearless in pursuit of new ideas and uncompromising in our quest to become the world’s first truly global Internet Service Provider. Interested in joining our mission? Take a look at career opportunities at Viasat today.

Are you ready for an exciting opportunity to utilize your cyber security knowledge and passion for defending networked environments? Do you thrive in a fast-paced environment where you are being counted on to do more than just handle cyber investigations but also advance security capability to protect networks and the users operating on them? Do you love the ever-changing IT security landscape and can you keep pace with a rapidly expanding satellite ISP while enjoying the opportunities that come with it?

When you are not conducting investigations; you will be creating wider visibility across customer environments, improving the context for the customers we monitor, and expanding current cyber security capabilities. This may include the creation or modification of Incident Response (IR) processes and workflows, development of policies and procedures, creation and execution of tabletop exercises, and developing internal tools for data triage and analysis work. You will train and create learning content using your expertise to provide guidance on advanced analysis of computer memory, computer artifacts and disk drives, malicious code samples, processing mitigations, and determination and escalation of threat detections.

Overall, you will help maintain the defensive state of detection, alerting, and remediation capabilities and work collaboratively in a team environment with talented colleagues, advanced technologies, and leadership support.

Job Responsibilities

Be a personal contributor in our mission to connect the world securely. The SOC Analyst is a technical position that will require skill and experience in cyber forensics, network traffic analysis, malware analysis, and compliance support. The SOC Analyst must be capable of conducting investigations and familiar with Incident Handling procedures. Candidates for this position must actively seek out learning opportunities on new techniques and approaches from senior members of the SOC team.

Candidates for this position must enjoy working as a member of a highly skilled technical team in a rapidly changing environment, be innovative and creative in detection tactics and techniques, be capable of analyzing threat actions from the defender’s, target’s and attacker’s point of view, and have a passion for protecting client data and corporate assets from advanced threats.

What You Will Do:

  • Conduct real-time and historical analysis using the SIEM and other security analytics tools with a focus on identifying security events, identifying incidents and tuning out false positives.
  • Perform reactive incident response functions including but not limited to host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs).
  • Perform incident investigations and responses involving advanced or complex threats. 
  • Participate incident response engagements amongst peers and senior SOC analysts, guiding them through forensic investigations, containing security incidents, and providing remediation recommendations.
  • Participate in technical meetings and working groups to address issues related to malware, threats, vulnerabilities, and cybersecurity preparedness.
  • Participate in post-incident reviews meetings and contribute to after action reports. 
  • Participate in the development of incident related communications, including incident response reports, incident status updates, and implementation of lessons learned after an incident. 
  • Collaborate with peers and multiple teams to identify improvements and identify areas for tuning use cases or signatures to enhance monitoring value
  • This role is contingent on Contract Award.

Requirements

  • Bachelor’s Degree in Computer Science, Computer Engineering,  Cybersecurity Engineering, Information Technology, Cyber Security or Data Science focusing on Cybersecurity or equivalent
  • Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment
  • Excellent problem-solving abilities
  • Communication and listening skills, a thorough approach to complex problem solving, decision-making ability, and a high motivation towards setting and delivering "excellence"
  • Demonstrated ability to be flexible, positive, and creative in a dynamic, fast paced and changing environment.
  • Required flexibility to work nights, weekends, and/or holiday shifts in the event of an incident response emergency
  • Ability to obtain and maintain and active secret or above clearance
  • US Citizenship
  • Up to 10% travel

Preferences:

  • Familiarity of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and firewalls
  • Familiarity of forensic tools such as EnCase, FTK, Volatility, and Redline
  • Knowledge of Microsoft Windows systems including Active Directory and Unix systems
  • Familiarity of network devices such as firewalls, switches, and routers
  • Familiarity utilizing Splunk technology stack and Hive for security event triage and analysis and incident response
  • Familiarity utilizing industry leading SIEMs to conduct security investigations and threat hunting
  • Familiarity in analyzing and inspecting log files, network packets, and other security tool information outputs from multiple system types
  • Familiarity of web application security and incident investigations
  • Familiarity of Information Security, Risk Classification, Incident Management, Security Monitoring, Threat Intelligence and Incident Response functions
  • Familiarity with technical analysis of email headers, links, and attachments to determine if an email is malicious, and then executing the appropriate remediation techniques to protect the environment
  • One or more of the following certifications are recommended:  CompTIA Security +; CompTIA Cybersecurity Analyst (CySA+); CompTIA Network +; SANS-GIAC certification (Security Essentials/GCIH, GCFA, GCED, GCIA, GNFA, GPEN, GWAPRT); CISCO (CCNA); EC-Council (CEH, LPT)
  • Team-oriented and skilled in working within a collaborative environment
  • Written and communication skills with the ability to present ideas in business-friendly and user-friendly language
  • Willingness to acquire in-depth knowledge of network and host security technologies and products (such as endpoint, network, email security) and continuously improve these skills
  • Ability to clearly and concisely document and explain technical details (e.g. experience documenting incidents, technical writing, etc.)
To learn more about this site and other office locations, please click here!

Additional Requirements and information

Minimum education:

BA/BS

Years of experience:

0-1 years

Travel:

Up to 10%

Citizenship:

US Citizenship Required

Clearance:

Must be able to obtain a United States Secret Clearance

Worker Classification:

Employee

Back to search jobs

Viasat is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.

If you would like to request an accommodation on the basis of disability for completing this on-line application, please click here.