Eviden is an Atos Group business with an annual revenue of circa 5 billion and a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 55,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

Position: Analyst - MDR (SOC)

Duties of the role:

You will be working in Leading edge Security Operations Centre and experiencing day to day cyber security anomalies, investigations, and incidents. - You will experience real world cyber security threat alerts and will monitor for these security threat alerts, analyse them and notify customer within SLA. - Track health of monitoring infrastructure - You will be trained on how to work on SOC operations, routine maintenance, etc. - Adhere to SLA and timely notification to customer so that clients can defend against threats. - Investigation as per IA & R run books. Detailed/thorough investigation write-up about the security threat risks/alerts, including investigation details, impact and recommendations.

Required Qualifications:

• Experience Range: 0-2 years of relevant experience/education (formal subjects in school) in cyber security
• Bachelor's Degree (completed or ongoing) in Information Technologies, Cyber Security, or a related field.

• Minimum 12 months experience working in security operations environment OR 2 years' experience in IT operations (datacentre support or NOC environment or Endpoint support) OR should have cyber security related subjects in school.

• Strong analytical and technical skills in computer network defence operations
• Incident Handling (Detection, Analysis, Triage) * Hunting (anomalous pattern detection and content management).
• Prior experience of investigating security events.
• Should be able to distinguish incidents as opposed to non-incidents.
• Working knowledge of operating systems, network technologies (firewall, proxy, DNS, Netflow), Active Directory, network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS, etc.)
• Common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.).
• Experience with some/all: Firewall, Web Proxy, EDR solution, AV, and solutions like Cisco AMP, Sumo Logic, CounterTack, SIEM solutions, Kibana/Zeppelin, ThreatQ, FireEye Malware analysis, Snort, Suricata Key Responsibilities
• 24/7 vigilance against threats happening in customer environment.

Nice to Have:

• CEH, Security+, or related certification.

Work Schedule: Rotational Shifts 24x7 [these shifts can be morning, evening or night, and can be rotational]

Estimated start date and length of internship - Immediate. 1 Year internship, with a roadmap to be absorbed as a Full Time Employee.

Up to 28 hours/week

Preferred location is Reston, Virginia

Let's grow together.