Skip to main content Skip to Footer

Job Listing

Federal - CSOC Tier 1 Incident Monitoring Analyst - Level 1

Job Location: VA - Springfield

Job Number: 00461303


- Job description

Organization: Accenture Federal Services

Location: Springfield, VA


Great outcomes are everything. It's what drives us to turn bold ideas into breakthrough solutions that solve the toughest problems fast--the first time. So you can change how people work and live.


The CSOC Tier 1 Incident Monitoring Analyst performs event detection and analysis, event escalation and ticketing and administrative tasks for the Cyber Security Operations Cell (CSOC). Activities include:

  • Identifying, categorizing, prioritizing, investigating and escalating cyber security events.
  • Maintain overall responsibility for any tasks, analysis, or detection required during cyber security incident response.
  • Monitor intrusion detection and protection systems.
  • Identify and manage process improvement in intrusion detection and protection.
  • Execute network traffic analysis.
  • Create IPS rules and signatures to detect and disrupt anomalous inbound and outbound network activity.
  • Track tactical issues in execution of Security Information and Event Management (SIEM) responsibilities.
  • Manage the process improvement program for SIEM processes.
  • Execute event/incident procedures, long-term analysis and investigation into network activity and provide investigation reports to Cyber Defense Analysts.
  • Work with the Content Engineer to develop reports, dashboards, real-time rules, filters and active channels.
  • Manage event and information intake to include gathering intelligence reports, investigating reported incidents, and interacting with existing cyber security groups as necessary.
  • Document investigation results, ensuring relevant details are passed to Cyber Defense for final event analysis.


Basic Qualifications:

  • BA/BS degree in Cyber Security Management, Computer Science, Computer Information Systems, Engineering, Math, Business or other related field, or 4 or more years of recent experience in cyber security engineering.
  • 3+ years of specific experience working in a Cyber Security Operations Center environment

  • Must have one of the following certifications (or be able to obtain within 6 months of start date): CEH, GCIA, GCIH, SCYBER

  • Must be willing to work rotating schedules to include weekend and overnight work

Preferred Qualifications:


Hands on recent use and knowledge of specific products and related technologies:

  • Exposure to DoD  analysis experience.
  • Experience or understanding of IT systems infrastructure.
  • Experience with patch management processes and tools.
  • Experience with process development and deployment.
  • Experience working in a security watch desk environment.
  • Hands-on experience with firewalls, routers, or antivirus appliances a plus.
  • Hands-on experience with cyber security tools such as ArcSight, Nessus, McAfee Endpoint Security, and FireEye.
  • Hands-on experience with data correlation and analytics tools such as Apache Spark, Splunk, QLik, Tableau, or other business intelligence tool.
  • Minimum 2 years experience or certification in Unix, Solaris, Linux, or Windows servers.
  • Scripting using bash, Chef, Puppet, or Windows PowerShell.

An active security clearance or the ability to obtain one may be required for this role.


Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.


Applicants for employment in the U.S. must possess work authorization which does not require now or in the future sponsorship by the employer for a visa.


Accenture is a federal contractor, an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.


Equal Employment Opportunity

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.


Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.


Accenture is committed to providing veteran employment opportunities to our service men and women.


US Citizenship Required.


Find a job

Start your search here: Enter job title, skill, experience level or city

Stay in touch

Join the Accenture Talent Connection, follow our Careers blog, or sign up for job alerts.