Cyber Defense Analyst 1 (SOC Analyst 1)

About Apollo Information Systems

Apollo Information Systems is a multi-national Cybersecurity leader whose mission is protecting our clients with a complete set of cybersecurity and networking services and solutions; we believe everyone has the right to protect their people, information, and property from the threat of cyber-attack; what we do everyday matters!

If you want what you do to matter, then Apollo may be right for you. We invest in our customer to build a long-term relationship and provide stable growth opportunities for team members. In business, integrity and customer service are not just platitudes but unbreakable commitments that we live every day to carefully guard our reputation for high quality, honesty, and real-world expertise. We work with industry-leading partners to deliver end-to-end capabilities that our client’s need in the war to defend our customers and our countries against hackers, criminals, and nation states. The work we do matters, and if purpose and mission are as important to you as working with a Rockstar team where you can learn every day, then read on. Learn more about us at https://apollo-is.com/.

Apollo is a 20-year-old family-oriented business that seeks to make our customer’s world safer each day. Our culture is born from hard work and tenacity with a team of long-standing dedicated members that exhibit desire, expertise, and integrity. We focus on meeting our customer’s needs and having fun along the way. Competence is core to the value proposition we offer our customers, and this position represents a key investment in our customers’ success and an opportunity for growth and leadership for the right candidate.

Job Description – Apollo’s Cyber Defense Analyst 1 is a member of the Security Operations Center Team responsible for monitoring and detection of threats and cybersecurity attacks. The Cyber Defense Analyst 1 works independently at times, as well as with other members of the SOC Team, to analyze system and security events, threat and vulnerability advisories, and cyber threat intelligence to identify malicious activity and potential attacks to alert clients to prevent or respond to incidents.

Daily work includes monitoring network and system security events, conducting threat hunting through event data and activity logs, developing alarms for suspicious or malicious activity, escalating alerts to clients, and preparing reports to summarize detected activities. The Cyber Defense Analyst 1 executes and helps to create operational processes for consistent monitoring of client environments and should be familiar with varieties of security tools and technologies. The Cyber Defense Analyst 1 additionally works to support the Apollo Incident Response Team by conducting monitoring and analysis during the course of incident management engagements.

This role is authorized to work remotely and may require up to 10% travel to client locations generally within the domestic United States.

Essential Functions:

• Monitor security events and escalate verified alerts according to procedures to activate incident response processes.
• Conduct analysis of network traffic and computer system discovery applications.
• Assist in preparing client deliverables including reports, briefing presentations and recommendations to communicate security information, event summaries, vulnerabilities, and threats to clients on a routine and periodic basis, helping to distill technical concepts into valuable and informative information.
• Contribute to the development of effective, efficient, and repeatable processes to improve the operations of the SOC and value to clients.
• Perform threat hunting activities in client networks through proactive analysis of log, network, and system data to identify undetected threats.
• Provide sound technical recommendations that enable remediation of security issues.
• Identify and incorporate applicable indicators of compromise (IOCs) into network security tools to protect client networks.
• Partner with security engineering and clients to develop and refine SIEM correlation rules.
• Utilize advanced threat models, SIEM use cases, and incident response playbooks specific to customer network requirements.

Required Managerial and Interpersonal Skills and Qualifications:

• Capable of working independently, establishing priorities, and managing task completion within deadlines that are responsive to client needs within a team of SOC analysts working together to support diverse company types and wide-ranging client capability levels.
• Able to communicate effectively through writing, speaking, and presenting to client technical representatives.
• Team player capable of productively contributing to the Apollo mission by supporting fellow teammates and clients in a dynamic growing and changing environment.

Essential Technical Experience and Knowledge Skills:

• Knowledgeable in network traffic analysis, threat detection, and advanced threat tactics, techniques, and procedures (TTPs).
• Knowledgeable of network and security architecture principles, firewalls, IDS/IPS fundamentals, endpoint security systems, and other security protective/detective systems.
• Experience in cybersecurity event analysis, intrusion detection, and security operations.

Additional Background and Experience Requirements:

• Must be able to complete Apollo pre-employment screening, including a criminal background

Preferred Skills and Qualifications:

• Possess an industry certification such as a Security +, CYSA+, CISSP, GCIH, GMON, GCIA, OSCP, CEH, CompTIA Network+, or other recognized credentials.
• Computer Science or related 4-year degree.
• Experience creating detailed queries and scripts, such as regular expressions, for log, event, and correlation analysis.
• Experience with quickly learning and understanding complex environments, independently reaching stretch goals, and continually improving knowledge and capabilities.

Compensation and Benefits

• You will love working at Apollo because of who you work with and what you do. We also offer:
• Competitive salaries
• Medical for you and your family
• Dental for you and your family
• Vision for you and your family
• 401k
• PTO
• Cell phone reimbursement
• Location
• This position will primarily work from home. Candidate must be able to work within the United States of America without sponsorship requirements. Position may require up to 10% travel, including via airlines and personal, rideshare, or rental vehicles.