Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cyber Security Analyst

Boston Government Services

Boston Government Services, LLC. (BGS) has created this Evergreen Talent Pool post for gathering qualified candidates for a position relating to Cyber Security Analyst which would support our clients.

BGS is an engineering, technology, and security firm helping to advance missions of national importance for government programs, national laboratories, national security facilities, nuclear operations, and complex commercial projects. We support clients at every stage, from strategic planning and program management to the execution of project management, procurement, supply chain management, quality, safety, security, nuclear and systems engineering and technical activities. We strive to attract and retain the best talent because it delivers the best results and "Delivery Certainty" for our clients. Our capabilities are based on our experience in complex, secure, and highly regulated environments. We leverage our expertise and capabilities to provide mission-driven integrated services, systems, and solutions tuned to our clients' mission needs, challenges, requirements, expected results, and strategic direction.

Work that Matters. People that Matter More. At BGS, we believe meaningful work starts with great people. We foster a culture built on respect, collaboration, and accountability-where employees are empowered to contribute ideas, grow professionally, and make an impact. We care about our employees' well-being through competitive benefits, clear expectations, and an environment that values both excellence and connection.

If you align with BGS' company values and culture, we would love for you to explore opportunities to join our growing team by checking out the job description below!

Duties/Responsibilities Include:
  • Resetting user passwords for cause (e.g., when they have been identified as being suspected compromised or 'known compromised').
  • Working with service owners to reset service account passwords for various reasons.
  • Ensuring authorizers are designated for in-scope accounts.
  • Analyzing usage patterns for accounts (e.g., service, administrative) to identify inactive accounts or inappropriate account use.
  • Reviewing approval requests for various new access or accounts.
  • Triaging unusual access requests (e.g., access from 3 rd party VPN providers, impossible travel) or phishing reports.
  • Evaluate endpoint and detection response (EDR) installation and coverage.
  • Identify systems without EDR and provide to IT teams for remediation.
  • Monitoring external attack surface for unapproved systems, undocumented systems, and newly disclosed vulnerabilities.
  • Reviewing systems with existing public access to ensure requirements for these systems are followed (e.g., event logging, multifactor authentication).
  • Attend online/Teams meetings with team and others as appropriate.
  • Work with team to provide status on current task, suggest improvements, discuss implementation, etc.
A candidate is expected to:
  • Analyze data and perform initial planning to address identified issues.
  • Assist with the creation of playbooks to address identified issues.
  • Seek to understand the intention of detections and corresponding playbooks.
  • Execute various playbooks dealing with identified issues with minimal assistance (e.g., identification of compromised passwords, inappropriate use of administrative accounts, systems not providing event logs, systems without a functional EDR installed).
An improved candidate would also:
  • Adapt on-the-fly when an existing playbook is insufficient.
  • Provide basic feedback on playbooks and detections.
  • Produce clear reports (MTTD/MTTR, FP rate, backlog) for technical and executive audiences; maintain thorough case notes.
  • Recommend additional new use cases for detections based on an analysis of threats and data.
  • Identify telemetry quality and visibility issues (SIEM parsing/normalization, EDR/XDR sensor health, asset/identity tagging).
An excellent candidate would also:
  • Conduct proactive threat hunts; convert findings into new detections and control recommendations.
  • Create advanced use cases for detections based on an analysis of threats and data, including sample criteria to identify the behavior and mapping detections to MITRE Telecommunication & CK.
  • Drive continuous improvements to existing processes or tooling.
  • Perform quality reviews and improve handoffs/runbooks.
  • Coach, guide, teach others on the team.
  • Lead investigations end-to-end (triage to containment), delivering timelines, root cause, scope, IOCs, and impacted assets.
  • Execute/coordinate containment and remediation (host isolation, credential resets, blocks) with proper approvals and verification.
Experience:
  • Experience in system and network administration.
  • Staying up to date with the latest cyber security threats, vulnerabilities, and best practices.
  • Strong analytical and problem-solving skills.
  • Meticulous attention to detail to ensure thorough assessments and accurate reporting.
  • Excellent written and verbal communication skills to effectively convey findings and recommendations to technical and non-technical stakeholders.
  • Ability to work collaboratively with other cyber security professionals, IT staff, and external vendors.
  • Considerable knowledge/experience of assessing security controls.
  • Experience and skill in conducting audits or reviews of technical systems.
  • Experience working in a government environment.
  • Experience working in a distributed IT environment.
  • Ability to qualify for HSPD-12 card for use in two-factor authentication.
  • Able to work both independently and as a contributing member of a small technical team.
  • Able to disseminate knowledge to current staff.
Requirements:
  • 1-3 years in a SOC, cyber security 'blue team', or closely related role.
  • Strong grasp of TCP/IP, OSI model, and common protocols ( DNS, SMTP). Windows/Linux/macOS fundamentals; Active Directory/Azure AD concepts; basic cloud logging.
  • Experience with at least one SIEM and one EDR/XDR platform.
  • Experience with ticketing/case management.
  • Ability to craft queries using common languages; comfort with regex, JSON and APIs; basic scripting in Python/PowerShell/Bash.
  • Excellent analytical, problem-solving, and communication skills both with stakeholders, peers, and internal customers; able to operate under pressure in a shift or on-call environment.
  • Must be a U.S. citizen.
  • Successful drug screening.
Relevant certifications (nice to have):

Security+, CySA+, SSCP; Microsoft SC-200/AZ-500; Splunk Core/Enterprise Security; GIAC (GCIH, GCIA, GCFA, GCTI); cloud provider security certs.

Preferred Qualifications:
  • 3-5 years relevant experience including investigations, data analysis, and detection tuning.
  • Comfort using Splunk Processing Language (SPL), CrowdStrike EDR, and ServiceNow.
  • Experience with SOAR tools and automation development.
  • Experience using identity security/management tools (e.g., Entra ID, Active Directory, Shibboleth, CrowdStrike Identity Protection).
  • Cloud security experience (e.g., CloudTrail/GuardDuty, Azure Defender/M365, GCP Security Command Center).
  • Basic forensics skills and network analysis fundamentals (host triage, timelines, artifact analysis, packet/PCAP review).
  • Understanding of the Cyber Security Framework (CSF) and NIST 800-53 controls.
Location/Work Arrangement:
  • This position may be remote, hybrid, or fully onsite depending on the client need.

Benefits:

BGS offers a competitive total compensation package to eligible employees. Benefits include Health, Dental, Vision, Life Insurance, Paid Vacation, 401K, Long and Short-Term Disability.

EEO:

BGS is an Equal Opportunity/Affirmative Action employer. All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

Exclusive Agreement Disclaimer:

BGS has standing contracts with federal agencies throughout the United States. We require an affirmative exclusive agreement to represent all candidates to our clients. By submitting this application, you are consenting to allow BGS to represent you as a candidate for the role in which you are applying.

Schedule is full-time, Monday - Friday 40-hour week.
Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Cyber Security Analyst in Oak Ridge, TN vacancy
  •  ...for a position relating to Vulnerability Analyst which would support our clients. BGS is an engineering, technology, and security firm helping to advance missions of national...  ...to address vulnerabilities as part of a 'cyber hygiene' process. Recommending... 
    Suggested
    Full time
    Temporary work
    Remote work
    Monday to Friday

    Boston Government Services

    Oak Ridge, TN
    4 days ago
  • $80k - $105k

     ...sexual orientation, gender identity or national origin. This position requires the successful candidate to obtain and maintain a Q security clearance. Candidates for positions requiring a security clearance are required to be tested for the absence of any illegal drug... 
    Suggested
    Full time
    Temporary work
    Work experience placement
    Immediate start
    Flexible hours

    Centrus Energy

    Oak Ridge, TN
    1 day ago
  • Description This position is based at our Corporate Headquarters in Oak Ridge, TN. Job Summary : The IT Project Manager is responsible for supporting the delivery of IT and business initiatives from initiation through completion. This role partners with business stakeholders...
    Suggested
    Work experience placement

    ORNL Federal Credit Union

    Oak Ridge, TN
    1 day ago
  •  ...renaissance at industrial scale. Our mission is to deliver the essential building blocks of nuclear power—enabling cost-effective, safe, and secure energy for the world. The Technical Project Manager will be responsible for executing strategic and operational projects at... 
    Suggested
    Permanent employment
    Full time
    Work at office

    Epoch Biodesign

    Oak Ridge, TN
    16 hours ago
  •  ...electrical engineers to integrate control systems into facility and equipment designs Coordinate with cybersecurity personnel, business analysts, and operations personnel as stakeholders in network design and integration Support system testing, commissioning, and... 
    Suggested
    Temporary work

    MSTI

    Oak Ridge, TN
    1 day ago
  •  ...standards and client requirements. About the role We are seeking a motivated, practical, and mission-focused Information System Security Officer (ISSO) to support a commercial-style manufacturing operation performing work funded through the Department of Energy. This... 
    Full time
    For contractors

    Napakiak Ventures

    Oak Ridge, TN
    6 days ago
  •  ...Operations & Administration Manage the full lifecycle of Kubernetes clusters (on‑premises K3s/RKE2, GKE, and EKS), including upgrades, security patching, scaling, and capacity planning Troubleshoot cluster‑level issues including control plane problems, node failures, and... 
    Work at office
    Local area

    EmergencyMD

    Oak Ridge, TN
    4 days ago
  •  ...BGS is an engineering, technology, and security firm helping to advance missions of national...  ...Processing requests from cybersecurity analysts for new detections within Splunk Enterprise...  ..., reports, and other functionalities for cyber-based use-cases, including active... 
    Full time
    Temporary work
    Remote work
    Monday to Friday
    Shift work

    Boston Government Services

    Oak Ridge, TN
    16 hours ago
  •  ...standards and client requirements. About the Role We are seeking a highly experienced and mission-focused Information System Security Manager (ISSM) to lead cybersecurity efforts supporting a commercial-style manufacturing operation performing work funded through... 
    Full time
    For contractors

    Napakiak Ventures

    Oak Ridge, TN
    6 days ago
  •  ...Barnhart Energy Company, a sister company of Barnhart Crane and Rigging, is looking for a Process & Systems Analyst to join our team. Mission:  one-Team, leading from the Front, creating good Works. Principles: one -Community We care deeply, valuing collaboration... 
    Full time

    Barnhart Crane & Rigging

    Oak Ridge, TN
    7 days ago
  •  ...Job Description Job Description Mid -level (2-5 years) Must be eligible for a security clearance (US Citizen) Must be able to work 100% onsite in Oak Ridge, Tennessee We are looking for a Cloud Software Engineer who enjoys the intersection of application... 

    ITR

    Oak Ridge, TN
    6 days ago
  •  ...Energy facility delivers scientific discoveries and technical breakthroughs necessary to realize solutions in energy and national security, providing economic benefits to the nation. This premier research institution, located near Knoxville in Oak Ridge, TN, addresses... 
    Remote work

    ITR

    Oak Ridge, TN
    13 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cyber Security Analyst. Be the first to apply!