NOC AnalystRMC - Resource Management Concepts Inc.

RMC is looking for a skilled Network Operations Center (NOC) Analyst to support IT and cybersecurity functions at NSWC Crane. The chosen candidate will be responsible for continuous monitoring, threat detection, incident response, network operations oversight, and providing support for Risk Management Framework (RMF) compliance within a Department of Defense (DoD) Research, Development, Test & Evaluation (RDT&E) setting.

This position demands strong analytical abilities, expertise in security monitoring platforms, and the capacity to work effectively in a mission-focused government environment.

Security Operations & Threat Monitoring

• Perform thorough log analysis including:
• Trellix (ESS)
• Microsoft Defender for Endpoints (MDE)
• Firewall Logs
• Data Loss Prevention (DLP)
• Intrusion Detection Systems (IDS)
• System and application logs
• AAA logs
• Web proxy logs
• Utilize tools such as Splunk, Microsoft Defender for Endpoint (MDE), and SolarWinds Orion.
• Evaluate security alerts, investigate incidents, and coordinate efforts for containment, eradication, and recovery.
• Develop and maintain SIEM dashboards, alerts, correlation rules, and reporting metrics.
• Document incidents thoroughly, deliver accurate metrics, and prepare post-incident analysis reports.
• Engage in post-incident reviews and drive process improvements.

Network Operations Center (NOC) Monitoring

• Provide infrastructure monitoring at the NOC level using SolarWinds Orion.
• Monitor network devices, servers (Windows/Linux), virtual infrastructure, storage systems, and essential services.
• Assess performance baselines, bandwidth usage, interface errors, and system health indicators.
• Correlate infrastructure alerts with security events to differentiate between operational issues and potential cyber threats.
• Escalate outages, performance issues, and system anomalies to the appropriate teams.
• Maintain alert thresholds, monitoring configurations, and performance reports.

Vulnerability Management

• Perform vulnerability assessments using Tenable.SC and analyze scan results.
• Track remediation activities and coordinate with system owners.
• Validate mitigation efforts and confirm closure of findings.
• Support risk-based prioritization of vulnerabilities.

Assessment & Authorization (A&A) / RMF Support

• Assist with Risk Management Framework (RMF) lifecycle processes.
• Support validation of controls, collection of artifacts, and documentation.
• Maintain and update Plans of Action and Milestones (POA&M) records.
• Support continuous monitoring (ConMon) requirements.
• Help manage RMF packages in eMASS or comparable systems.
• Assist with audits and demonstrate compliance with DoD cybersecurity controls.
• Review and mitigate identified risks collaboratively with the ISSO and Authorizing Official (AO).

Operational & Administrative Duties

• Respond promptly to service requests and keep detailed ticket documentation.
• Record resolution procedures, time spent, follow-up actions, and related change requests.
• Collaborate with cybersecurity, network, and systems teams to ensure effective incident tracking and resolution.
• Work independently and within cross-functional teams in a dynamic RDT&E environment.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related discipline preferred (or equivalent professional experience).
• 1 to 3+ years of experience in Security Operations Center (SOC), cybersecurity operations, or network monitoring.
• Proficiency with SIEM tools, such as Splunk.
• Experience utilizing enterprise monitoring platforms like SolarWinds Orion.
• Solid understanding of incident response procedures and threat detection techniques.
• Familiarity with vulnerability management systems and remediation processes.
• Knowledgeable in Risk Management Framework (RMF) and Department of Defense (DoD) cybersecurity compliance standards.
• Must hold an active DoD security clearance or be able to obtain one.
• Required DoD 8570/8140 certification, such as Security+.

Desired Qualifications

• Experience supporting Department of Defense (DoD) or Research, Development, Test, and Evaluation (RDT&E) environments.
• Hands-on experience with the Enterprise Mission Assurance Support Service (eMASS).
• Knowledge of NIST SP 800-53 security control frameworks.
• Excellent written and verbal communication abilities.
• Capability to present technical findings effectively to leadership.

At RMC, we're committed to your career growth! RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees.

RMC can offer you a great place to work with a small company feel and give you the experience, tuition assistance, and certifications that will take your career to the next level. This also includes a competitive paid vacation package with 11 paid federal holidays. Additionally, we also offer high-quality, low-deductible healthcare plans, pet insurance, and a competitive 401K package.

Salary at RMC is determined by various factors, including but not limited to location, a candidate's specific combination of education, knowledge, skills, competencies, and experience, as well as contract-specific requirements. The current annual salary range for this position will be $50,000 to $75,000.