Senior Cyber Security Operations Center (SOC) Analyst

At BWX Technologies, Inc. (NYSE: BWXT), we are People Strong, Innovation Driven. A U.S.-based company, BWXT is a Fortune 1000 and Defense News Top 100 manufacturing and engineering innovator that provides safe and effective nuclear solutions for global security, clean energy, environmental restoration, nuclear medicine and space exploration. With more than 7,800 employees, BWXT has 14 major operating sites in the U.S., Canada and the U.K. We are the sole manufacturer of naval nuclear reactors for U.S. submarines and aircraft carriers. Our company supplies precision manufactured components, services and fuel for the commercial nuclear power industry across four continents. Our joint ventures provide environmental restoration and operations management at a dozen U.S. Department of Energy and NASA facilities. BWXT’s technology is driving advances in medical radioisotope production in North America and microreactors for various defense and space applications. For more information, visit www.bwxt.com. Follow us on LinkedIn, X, Facebook and Instagram.

Welcome to BWXT
We believe in empowering our employees and cultivating a dynamic workplace that fosters growth and collaboration. Whether you’re an experienced professional or just starting your career, you'll find opportunities to challenge yourself, learn from seasoned experts, and contribute to nuclear innovation. We required a diverse range of skills to support our work in the markets that drive our business and welcome candidates from all backgrounds and life stages who are passionate about making a difference.

Position Overview:
BWXT is currently seeking a Senior Cyber Security Analyst specializing in SOC tier 3 and red team operations that will report to the Cyber Security Operations Manager. The successful candidate will focus on proactive security by threat hunting, conducting advanced penetration testing, and managing incident preparation efforts. This position requires strong technical capabilities, a questioning and challenging attitude, and ability to build positive working relationships among a large cross-functional team.

Location:

On-site in Lynchburg, Virginia

Your Day to Day as a Senior Cyber Security Operations Center Analyst:

• Conduct thorough security assessments, red team exercises, and penetration tests targeting technology solutions to identify weaknesses and mitigate risks effectively.
• Actively monitor threat intelligence sources, evaluate security vulnerabilities, and apply industry best practices to develop pro-active recommendations for system hardening and risk mitigation.
• Technical lead for the design, implementation, and maintenance of security solutions tailored for red team engagements and SOC operations, including intrusion detection systems (IDS), advanced threat protection, and endpoint detection and response (EDR) solutions.
• Proficiently utilize security incident and event management (SIEM) systems to detect, investigate, and respond to incidents.
• Mentor and guide team to improve security operations and streamline incident response processes.
• Assist with security risk assessments to establish baseline security configurations for technology platforms and applications prior to deployment.
• Utilize a variety of vulnerability assessment and penetration testing tools to identify and prioritize vulnerabilities, recommend remediation actions, and validate the effectiveness of security measures.
• Serve as an escalation point during investigations when first and second level analysts are unable to resolve the incident.
• Actively participate as a member of the Cyber Security Incident Response Team (CSIRT), orchestrating response efforts for escalated incidents and guiding first responders.
• Author and maintain technical documentation for deployment, configuration, and management of security systems as required.
• Keep abreast of emerging trends and technologies in cybersecurity by attending relevant conferences, workshops, and engaging in professional development activities.

Required Minimum Qualifications:

• A bachelor’s degree in Cybersecurity, Information Technology, or a related field is preferred; equivalent work experience may be considered.
• At least 10 years of experience in IT and cybersecurity, with a strong emphasis on advanced incident response, threat hunting, and red team operations.
• Extensive practical experience in performing penetration testing and red teaming activities, including exploitation methodologies, post-exploitation techniques, and reporting findings and remediation strategies.
• Advanced technical proficiency in cybersecurity tools and technologies, including:
• Microsoft 365 security suite (Defender, Sentinel, Intune)
• Network security tools (IDS, next-generation firewalls, SIEM systems)
• Advanced endpoint protection and detection solutions (EDR, XDR)
• Vulnerability assessment tools for identifying and prioritizing vulnerabilities
• Malware analysis and reverse engineering techniques
• Proven ability to lead and manage security incident response efforts, including coordinating with cross-functional teams to mitigate threats and provide forensic analysis.
• Strong knowledge of the MITRE ATT&CK framework and its application in real-world attack scenarios, vulnerability assessments, and threat modeling.
• In-depth understanding of open-source and commercial cybersecurity tools for threat detection, prevention, and analysis, with hands-on experience in configuring, managing, and utilizing these tools.
• Demonstrate a strong commitment to confidentiality in handling sensitive information.
• Must be a U.S. citizen. 
• Must be able to obtain and maintain a U.S. Department of Energy (DOE) clearance.

Preferred Additional Qualifications:

• Experience with breach and attack simulation (BAS) and secure access service edge (SASE) solutions.
• Capable of producing detailed incident reports and conveying complex technical information to a variety of stakeholders using excellent written and verbal communication skills.
• Ability to train, mentor, and support other team members on advanced cybersecurity concepts, red teaming practices, and emerging threats.
• One or more of the following certifications: GSEC, CEH, CISSP, CISA, GCIH, OSCP, OSCE, or equivalent. A focus on offensive security certifications is highly valued.
• Flexibility to participate in an on-call rotation for security incident response duties, including after-hours availability when required.

What We Offer:

• Competitive salary and benefits package, including health, dental, and retirement plans.
• Flexible work schedules and paid time off to promote a healthy work-life balance.
• Professional development opportunities, including mentorship programs and sponsorship for continuing education.
• An inclusive atmosphere that celebrates new perspectives and supports collaboration between different generations.
• The chance to be part of a mission-driven organization making a positive impact on the future of energy.
• Opportunities for continuous learning and training to grow throughout your career!

Pay: $86,000 - $136,000

The base salary range for this position in Virginia (US-VA) at the start of employment is expected to be between $86,000 and $136,000 per year. However, the base salary offered is based on local job market factors, and may vary further depending on factors specific to the selected job candidate, such as job-related knowledge, skills, experience, and other objective business considerations. Subject to these considerations, the total compensation package for this position may also include other elements, such as an annual cash incentive in addition to a full range of medical, retirement, and/or other benefits. Details of participation in these benefit plans will be provided at such time the selected job candidate receives an offer of employment. If hired, the selected job candidate will be employed 'at-will,’ unless employed at a location and in a position subject to a collective bargaining agreement.  The company further reserves the right to modify base salary (as well as any other discretionary payment, compensation or benefit program) at any time, including for reasons related to individual performance, company or individual department/team performance, and other market factors.

As a federal government contractor, BWX Technologies, Inc. and any subsidiaries, affiliates and related entities (“BWXT” or the “Company”) complies with all federal, state, and local laws and customer requirements regarding health and safety protocols.  As such, all BWXT new hires will be required to adhere to applicable Company health and safety requirements within the workplace as a condition of employment.

Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified information or matter. Position requires U.S. citizenship with (no dual citizenship) ability to obtain and maintain a Department of Energy (DOE) security clearance which involves an extensive criminal and financial background investigation, drug test and previous employment reference verifications.

BWXT is committed to the concept of Equal Employment Opportunity. We have established procedures to ensure that all personnel actions such as recruitment, compensation, career development, benefits, company-sponsored training and social recreational programs are administered without regard to race, color, religion, sex, national origin, citizenship, age, disability, protected veteran or other protected status.

BWX Technologies, Inc. and its affiliates and subsidiaries (BWXT) is not responsible for and does not accept any liability for fees or other costs associated with resumes or candidates presented by recruiters or employment agencies, unless a binding, written recruitment agreement between BWXT and the recruiter or agency exists prior to the presentation of candidates or resumes to BWXT and includes the specific services, job openings, and fees to be paid (“Agreement”). BWXT may consider any candidate for whom a recruiter or agency has submitted an unsolicited resume and explicitly reserves the right to hire such candidate(s) without any financial obligation to the recruiter or agency unless an Agreement is in place prior to presentation and such Agreement explicitly encompasses the job opening for which such fees or costs are sought. An email, verbal or other informal contact with any person within BWXT will not create a binding agreement. Agencies or recruiters without an Agreement are directed not to contact any hiring managers of BWXT with recruiting inquiries or resumes. Recruiters and agencies interested in partnering with BWXT may contact BWXT’s Talent Acquisition team at talent_acquisition@bwxt.com.