Job DescriptionJob DescriptionAkira Technologies is seeking a Senior SOC Analyst team member is responsible for the analysis of all technology devices which may include Operational Technology (OT) and Industrial Control Systems (ICS) within enterprise. This includes analytical analysis of device communication, forensic analysis of Windows or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage.This role is an onsite position supporting a government client in Port Hueneme, CA five days a week. This also requires candidates with an active Top Secret security clearance or higher.An ideal candidate for this position will be a proactive self-starter who has experience with system administration, Windows and Linux operating systems (OS) mechanics and filesystem structures, disk and memory forensics, commonly abused tools/vectors for persistence, privilege escalation, and lateral movement, operating system log analysis, and triaging suspicious file artifacts for unusual behavior, with respect to the environment they are found in. This role requires a familiarity with what routine OS activities and common software/user behavior looks like in the context of forensic artifacts or timelines. Analysts should also be familiar with common categories and formats of host-based indicators of compromise (IOCs) and how/where they can be leveraged to identify known-bad files/activity on an endpoint. Candidate will utilize the Cyber Kill Chain and define the entire attack life cycle along with creating detailed reports on how impacts may or have occurred.As a senior role candidate will assist in reviews and provide feedback to journeyman and junior analysts’ investigation and facilitate discussions on recommendations on improving SOC visibility, efficiency, and/or processes. Secondary role will also focus on identifying unusual files, scripts, configurations, and user activity based on bulk aggregation via an Endpoint Detection and Response (EDR) or triage tools, and coordinate forensics centric efforts with case management oversight. Job ResponsibilitiesSupport client leaders in establishing and managing a Security Operations Center (SOC) to provide a secure environment that facilitates incident response and threat hunting activities.Provide oversight over more junior cyber analysts and assist client with prioritization and milestone tracking for efforts related to the SOCManage the security information and event management (SIEM) platform to monitor for security alerts and coordinate vulnerability assessments and artifact collection across servers and network devicesEvaluate network structures and device configurations for security risks, offering recommendations based on best practices, and gather data to identify and respond to network intrusionsAnalyze network traffic and system logs to identify malicious activities, vulnerabilities exploited, and methods used, and develop processes to enhance SOC response and efficiencyConduct comprehensive technical analyses of computer evidence, research and integrate new security tools into the SOC, and synthesize findings into reports for both technical and non-technical audiencesPerform forensic analysis of Windows and Linux clients and servers, other control operating systems, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage.Job Qualifications(Senior level) At least 5 years of experience in security operations, demonstrating leadership in customer-facing rolesDeep understanding in host/network forensics software tool kits (e.g. MAGNET, EnCase, Sleuthkit, FTK)Understands evidence handling processes and procedures specifically in DoD environmentsAble to ensure completed collection of artifacts to provided best possible outcome of a caseProficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages, system/application vulnerabilities, and compliance with Department of Defense (DoD) policies and proceduresExtensive knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH, SMTP, SMB), and experience with tools like Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and familiar with MITRE ATT&CK framework, with the ability to collaborate effectively across multiple locations.Preferred Skill SetsKnowledge of Operational Technology (OT) or Industrial Control Systems (ICS)Strong analytical and troubleshooting skillsProficient in forensics software tool kit (MAGNET)Able to provide expert content development in Splunk Enterprise Security using tstats and data modelsUnderstands how to utilize knowledge of latest threats and attack vectors to develop correlation rules for continuous monitoring on various security appliancesExperience in other tools and communication languages as applicable such as Nessus, Endgame, CrowdStrike, Gray Noise, Shodan, Bacnet, MODBus, SCADA systems, and PCAPReview logs to determine if relevant data is present to accelerate against data models to work with existing use casesCertified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology certification
Salary Range: $100,000 to $170,000Akira’s pay range for this position considers various factors including skills, years of experience, training, licenses, certifications, alignment with market data, and internal equity in the organization. This pay range estimate is a general guideline only and not a guarantee of compensation or salary, which Akira believes to be done in good faith in compliance with local laws. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.General Description of BenefitsAkira offers its employees multiple options for medical plans (some with Health Savings Account), dental plans, and vision coverage, and a 401(k) plan with employer match. To promote work/life balance, Akira offers paid time off, including vacation and sick time, holidays, paid parental leave, military leave, bereavement leave, and jury duty leave. We also offer short and long-term disability benefits to protect employee income in the event of sickness or injury, life insurance, accidental death and dismemberment insurance, and critical illness insurance. Akira also offers tuition, training, and certification reimbursement for professional development and career advancement.Akira regularly reviews our total rewards package to ensure our offerings remain competitive and reflect the values and needs expressed by our employees.
About Akira TechnologiesAkira strives to meet and exceed the mission and objectives of US federal agencies. As a leading small business cloud modernization and data analytics services provider, we deliver trusted and highly differentiated solutions and technologies that serve the needs of our customers and citizens. Akira serves as a valued partner to essential government agencies across the intelligence, cyber, defense, civilian, and health markets. Every day, our employees deliver transformational outcomes, solving the most daunting challenges facing our customers.Akira is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
Job DescriptionJob DescriptionAkira Technologies is seeking a Cyber Analyst team member who is responsible for the analysis of all technology devices which may include Operational Technology (OT) and Industrial Control Systems (ICS) as well as on-premises and cloud enterprise networks. This includes analysis of device communication, forensic analysis of Windows or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage.This role supports a government client in Port Hueneme, CA five days a week. Active Top Secret clearance is also required for this role.Job ResponsibilitiesSupport SOC team in operating and performing duties in a Security Operations Center (SOC) to provide a secure environment that facilitates monitoring, incident response, malware analysis, and threat hunting activities.Develop and utilize analytics on the security information and event management (SIEM) platform to monitor for security alerts and coordinate vulnerability assessments and artifact collection across servers and network devices.Asses Security Technical Implementation Guides (STIGs) compliance and completion.Utilize asset mapping tools to verify connected inventory. Handle Information Assurance Vulnerability Management (IVAM) notifications.Evaluate network structures and device configurations for security risks, offering recommendations based on best practices, and gather data to identify and respond to network intrusions.Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited, and methods used, and develop processes to enhance SOC response and efficiency.Conduct comprehensive technical analyses of computer evidence, research and integrate new security tools into the SOC, and synthesize findings into reports for both technical and non-technical audiences.Job QualificationsAt least 3 years, (Journeyman/Junior level) applicable 1 to 2 years of experience in security operations, demonstrating analytical duties and preforming host or network security analysis.Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages, system/application vulnerabilities, and compliance with Department of Defense (DoD) policies and procedures.Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH, SMTP, SMB), and experience with tools like Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center.Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and familiar with MITRE ATT&CK framework, with the ability to collaborate effectively across multiple locations.Preferred Skill SetsKnowledge of Operational Technology (OT) or Industrial Control Systems (ICS)Strong analytical and troubleshooting skillsAble to provide expert content development in Splunk Enterprise Security using tstats and data modelsUnderstands how to utilize knowledge of latest threats and attack vectors to develop correlation rules for continuous monitoring on various security appliancesExperience in other tools and protocols as applicable such as Nessus, Endgame, CrowdStrike, Gray Noise, Shodan, Bacnet, MODBus, SCADA systems, and PCAPReview logs to determine if relevant data is present to accelerate against data models to work with existing use casesFamiliar with the operations and functions of Nessus or security center managementCan assist and provide technical input to research, discover, implement hardware and softwareUnderstands importance and fundamentals of logistics and evidence handling Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology certification
Salary Range: $80,000 to $100,000Akira’s pay range for this position considers various factors including skills, years of experience, training, licenses, certifications, alignment with market data, and internal equity in the organization. This pay range estimate is a general guideline only and not a guarantee of compensation or salary, which Akira believes to be done in good faith in compliance with local laws. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.General Description of BenefitsAkira offers its employees multiple options for medical plans (some with Health Savings Account), dental plans, and vision coverage, and a 401(k) plan with employer match. To promote work/life balance, Akira offers paid time off, including vacation and sick time, holidays, paid parental leave, military leave, bereavement leave, and jury duty leave. We also offer short and long-term disability benefits to protect employee income in the event of sickness or injury, life insurance, accidental death and dismemberment insurance, and critical illness insurance. Akira also offers tuition, training, and certification reimbursement for professional development and career advancement.Akira regularly reviews our total rewards package to ensure our offerings remain competitive and reflect the values and needs expressed by our employees.
About Akira TechnologiesAkira strives to meet and exceed the mission and objectives of US federal agencies. As a leading small business cloud modernization and data analytics services provider, we deliver trusted and highly differentiated solutions and technologies that serve the needs of our customers and citizens. Akira serves as a valued partner to essential government agencies across the intelligence, cyber, defense, civilian, and health markets. Every day, our employees deliver transformational outcomes, solving the most daunting challenges facing our customers.Akira is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
Job DescriptionJob DescriptionAkira Technologies is seeking a Senior Security Operations Center (SOC) Analyst who will lead advanced cyber defense activities across various environments, including Operational Technology (OT), Industrial Control Systems (ICS), and cloud/on-prem enterprise networks. This includes analysis of device communication, forensic analysis of Windows or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage.Ideal candidate should be local to the Ventura County, CA to support on-site work. This role requires active Top Secret security clearance or higher.Key ResponsibilitiesAnalyze security incidents across OT, ICS, and enterprise networks.Perform forensic analysis on Windows/Linux systems, identifying suspicious behavior.Manage SIEM platforms to monitor and correlate security events.Conduct malware triage, timeline analysis, and identify indicators of compromise (IOCs).Lead vulnerability assessments, device configuration reviews, and artifact collection.Collaborate on SOC process improvements and provide feedback to junior analysts.Use asset mapping tools to verify connected inventory and handle IVAM notifications.Evaluate network traffic and logs to detect malicious activities and vulnerabilities.Develop detailed reports and briefings for both technical and non-technical audiences.Support the integration of new security tools and technologies into the SOC.Ensure compliance with Security Technical Implementation Guides (STIGs).Job QualificationsActive DoD Top Secret Clearance7+ years in security operations with demonstrated leadership.Expertise in cyber-attack analysis, including stages of attack, threat hunting, and system vulnerabilities.In-depth knowledge of network protocols (TCP/IP, DNS, SSH, HTTP/S) and experience with tools like Palo Alto, Splunk, Elastic SIEM, and VMware Security Center.Familiar with MITRE ATT&CK framework and Cyber Kill Chain methodologies.Experience with threat intelligence and attack reconstruction based on network traffic.Knowledge of Operational Technology (OT) or Industrial Control Systems (ICS) security is a plus.Ability to write detailed technical reports and present findings clearly to different audiences.Desired certifications: CEH, GCIH, CISSP, OSCP, or equivalents.Strong analytical, troubleshooting, and critical thinking skills.Desired SkillsExperience with Nessus, Endgame, CrowdStrike, SCADA systems, and more.Proficiency in Splunk Enterprise Security, using tstats and data models for continuous monitoring.Knowledge of handling security incidents and evidence according to best practices
Salary Range: $100,000 to $170,000Akira’s pay range for this position considers various factors including skills, years of experience, training, licenses, certifications, alignment with market data, and internal equity in the organization. This pay range estimate is a general guideline only and not a guarantee of compensation or salary, which Akira believes to be done in good faith in compliance with local laws. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case.General Description of BenefitsAkira offers its employees multiple options for medical plans (some with Health Savings Account), dental plans, and vision coverage, and a 401(k) plan with employer match. To promote work/life balance, Akira offers paid time off, including vacation and sick time, holidays, paid parental leave, military leave, bereavement leave, and jury duty leave. We also offer short and long-term disability benefits to protect employee income in the event of sickness or injury, life insurance, accidental death and dismemberment insurance, and critical illness insurance. Akira also offers tuition, training, and certification reimbursement for professional development and career advancement.Akira regularly reviews our total rewards package to ensure our offerings remain competitive and reflect the values and needs expressed by our employees.
About Akira TechnologiesAkira strives to meet and exceed the mission and objectives of US federal agencies. As a leading small business cloud modernization and data analytics services provider, we deliver trusted and highly differentiated solutions and technologies that serve the needs of our customers and citizens. Akira serves as a valued partner to essential government agencies across the intelligence, cyber, defense, civilian, and health markets. Every day, our employees deliver transformational outcomes, solving the most daunting challenges facing our customers.Akira is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
