Tier 1 Defensive Cyber Operations (DCO) Analyst in Charleston

OverviewBreakPoint Labs seeks a Tier 1 Defensive Cyber Operations (DCO) Analyst to be responsible for the continuous monitoring and initial triage of security events within a Cybersecurity Service Provider (CSSP) environment. Work takes place on four ten-hour shifts (Sunday-Wednesday or Wednesday – Saturday).ResponsibilitiesMonitor network and host-based systems.Identify and validate suspicious activities.Escalate security incidents as required.Provide support for foundational incident response procedures.Comply with established reporting requirements with accuracy and timelines.Assist in managing incident response by documenting and tracking details.Participate in training to develop familiarity with tools and processes.Support log correlation tasks using tools like Splunk, Elastic, and Sentinel.Assist in program reviews and product evaluations as directed.Surge support may be required to support incident response actions.Required Experience3+ years of experience working in CSSP, SOC, or similar environment, OR, Bachelor's degree in relevant technical field.Must have DoD 8570 IAT Level II and CSSP-specific certifications.Experience with Log Aggregation Tools (e.g., Splunk, Elastic, Sentinel).Experience with IDS/IPS, host-based, and operating system logging solutions.Knowledge of Incident Response methodologies and procedures.Experience with digital forensics, threat hunting, and/or incident response desired.Familiarity with CJCSM 6510.01B.Analytical ability and strong verbal and written communication skills required.Certifications RequiredDoD 8570 IAT Level II and CSSP-specific certifications, CND.Clearance RequiredDoD SecretEducation Level requiredBachelor's Degree or 3+ years equivalent experience in a relevant technical discipline.J-18808-Ljbffr