Make a difference here.
UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.
By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India.
We are seeking an experienced Cybersecurity Analyst to join our 24/7/365 Security Operations Center (SOC). This role is critical in protecting our corporate infrastructure from cyber threats through continuous monitoring, incident response, and threat analysis. The ideal candidate will have 3-4 years of hands-on experience in cybersecurity operations and demonstrate proficiency in security tools and threat detection methodologies.
This position will rotate on shifts to enable a 24x7x365 service.
What You'll Do:
Perform comprehensive systems and network analysis of intrusions targeting network infrastructure, applications, operating systems, firewalls, proxy devices, and malware detection systems using Splunk SIEM platform
Conduct in-depth network security analysis and collaborate with SOC analyst team on preliminary incident response, event analysis, and threat intelligence activities
Investigate security threats across multiple data types, timeframes, hosts, and identities; initiate incident review cases for notable security events
Monitor information security alerts through Splunk to respond, triage, and escalate incidents as appropriate
Process alerts from diverse security tools including firewalls, intrusion detection systems (IDS), operating systems, antivirus solutions, web application firewalls, and web servers
Capture and document notable events within Splunk for forensic investigation and replay using saved search libraries
Perform continuous environmental monitoring to identify and recommend remediation strategies for unauthorized activities
Provide strategic analysis and real-time auditing, investigating, reporting, and remediation coordination for security incident tracking
What You Have:
Must be a U.S. citizen and hold or be able to acquire a Secret security clearance
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related technical field
Minimum 3-4 years of hands-on experience in cybersecurity operations, incident response, or security analysis
Demonstrated experience working in a Security Operations Center (SOC) or similar environment
Required: Proficiency with Splunk SIEM platform including search queries, dashboard creation, and alert configuration
Strong knowledge of network security protocols, architectures, and common attack vectors
Experience with security tools including firewalls, IDS/IPS, web application firewalls, antivirus solutions, and vulnerability scanners
Proficiency in log analysis and correlation techniques across multiple security data sources
What We Offer:
401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed
Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)
Group Term Life, Short-Term Disability, Long-Term Disability
Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness
Participation in the Discretionary Time Off (DTO) Program
11 Paid Holidays Annually