Title:  Security Operations Center Analyst

Job Title: Security Operations Center Analyst

Job Code: 30023

Job Location: Melbourne, Florida

Job Description:

L3Harris is searching for talented entry level Information Systems Security professionals to join the L3Harris Security Operations Team as a Security Analyst. This is a Level 1 Information Systems Security (ISS) position that is staffed in the Security Operations Control Center (SOCC). 

• This position is ONSITE at L3Harris offices located in Melbourne, Florida
• This role may require weekend, after-hours, or on-call rotations to meet program requirements and/or ongoing program support.
• This position may require limited travel in an emergency
• This position requires the ability to obtain FAA Public Trust Suitability

Essential Functions:

• Responsible for cybersecurity threat intelligence data collection via open intelligence sources.
• Organizes, documents, and collaborates discovered intelligence via information sharing platform.
• Researches threat actors, malware, attack vectors, and other threat information, collects indicators of compromise, documents and advises management on prevention and remediation strategies.
• Continually evaluates accuracy of open source threat intelligence and evolves intelligence collection strategies as sources deteriorate or conflict.
• Maintains and updates past intelligence with new information is provided.
• Produces well-written reports outlining current industry threats, findings on managed network, and best practices following detected threats.
• Collaborates with other teams to locate and remediate threats based on intelligence collected and communicated.
• Must be able to work in a fast-paced ever-changing environment.

Qualifications:

• To be eligible, applicants must be pursuing a Bachelor’s Degree in Information Technology/Computer Information Systems or Cyber/Information Security or have completed their Bachelor’s degree within the last 12 months, regardless of age.

• Ability to obtain and maintain a FAA public trust clearance.

Preferred Additional Skills:

• Information Security experience.
• Security+ Certification or equivalent certification preferred.
• Understanding of system vulnerabilities and exploitation.
• Understanding of vulnerability mitigation.
• Knowledge of SIEM functions threat hunting, correlation of events, and metrics development.
• Must have strong written and oral communication skills, be self-motivated and a self-starter, maintain a curiosity and desire to learn, and be able to work well in a team environment.
• Ability to prioritize vulnerability mitigation efforts based on risk assessments. Understanding of various Operating Systems.
• Understanding of system logs and familiarity with log analysis.
• Understanding of cyber-attack vectors (Buffer Overflow, Phishing, etc.)