HiringCafe
Posted 3w ago

NOC Analyst

@ Resource Management Concepts
View All Jobs
Crane, Indiana, United States
$50k-$75k/yrOnsiteFull Time
Responsibilities:monitor logs, analyze incidents, coordinate response
Requirements Summary:Bachelor's in cybersecurity/IT or related field; 1-3+ years SOC/cybersecurity ops; SIEM (Splunk); SolarWinds; incident response; RMF/DoD compliance; active DoD clearance or ability to obtain; DoD 8570/8140 cert such as Security+
Technical Tools Mentioned:Splunk, Microsoft Defender for Endpoint, SolarWinds Orion, Trellix ESS, Tenable.SC, DLP, IDS, Firewall logs
Save
Mark Applied
Hide Job
Report & Hide
Job Description

RMC is looking for a skilled Network Operations Center (NOC) Analyst to support IT and cybersecurity functions at NSWC Crane. The chosen candidate will be responsible for continuous monitoring, threat detection, incident response, network operations oversight, and providing support for Risk Management Framework (RMF) compliance within a Department of Defense (DoD) Research, Development, Test & Evaluation (RDT&E) setting.

This position demands strong analytical abilities, expertise in security monitoring platforms, and the capacity to work effectively in a mission-focused government environment.

Security Operations & Threat Monitoring

  • Perform thorough log analysis including:
    • Trellix (ESS)
    • Microsoft Defender for Endpoints (MDE)
    • Firewall Logs
    • Data Loss Prevention (DLP)
    • Intrusion Detection Systems (IDS)
    • System and application logs
    • AAA logs
    • Web proxy logs
  • Utilize tools such as Splunk, Microsoft Defender for Endpoint (MDE), and SolarWinds Orion.
  • Evaluate security alerts, investigate incidents, and coordinate efforts for containment, eradication, and recovery.
  • Develop and maintain SIEM dashboards, alerts, correlation rules, and reporting metrics.
  • Document incidents thoroughly, deliver accurate metrics, and prepare post-incident analysis reports.
  • Engage in post-incident reviews and drive process improvements.

Network Operations Center (NOC) Monitoring

  • Provide infrastructure monitoring at the NOC level using SolarWinds Orion.
  • Monitor network devices, servers (Windows/Linux), virtual infrastructure, storage systems, and essential services.
  • Assess performance baselines, bandwidth usage, interface errors, and system health indicators.
  • Correlate infrastructure alerts with security events to differentiate between operational issues and potential cyber threats.
  • Escalate outages, performance issues, and system anomalies to the appropriate teams.
  • Maintain alert thresholds, monitoring configurations, and performance reports.

Vulnerability Management

  • Perform vulnerability assessments using Tenable.SC and analyze scan results.
  • Track remediation activities and coordinate with system owners.
  • Validate mitigation efforts and confirm closure of findings.
  • Support risk-based prioritization of vulnerabilities.

Assessment & Authorization (A&A) / RMF Support

  • Assist with Risk Management Framework (RMF) lifecycle processes.
  • Support validation of controls, collection of artifacts, and documentation.
  • Maintain and update Plans of Action and Milestones (POA&M) records.
  • Support continuous monitoring (ConMon) requirements.
  • Help manage RMF packages in eMASS or comparable systems.
  • Assist with audits and demonstrate compliance with DoD cybersecurity controls.
  • Review and mitigate identified risks collaboratively with the ISSO and Authorizing Official (AO).

Operational & Administrative Duties

  • Respond promptly to service requests and keep detailed ticket documentation.
  • Record resolution procedures, time spent, follow-up actions, and related change requests.
  • Collaborate with cybersecurity, network, and systems teams to ensure effective incident tracking and resolution.
  • Work independently and within cross-functional teams in a dynamic RDT&E environment.