Security Analyst SOC

Our client is a MSSP Security Client created to give organizations a running start when it comes to cybersecurity, providing the same standard of security controls as large enterprises but without the cost-prohibitive nature of trying to build their own internal Security Operations Center.

Help clients build effective, proactive plans and comprehensive cybersecurity strategies by developing forward-looking tactics to stay ahead of emerging threats and evolving technology

Interested? keep reading!!!!

100% Paid Premiums

Competitive medical and dental benefits for employee and family members with (individual, individual + spouse, OR family plans)

12 paid holidays per year

Flexible Paid Time Off policy

• Monitor, analyze, and interpret security/system logs for events, operational irregularities, and potential incidents and escalating issues as appropriate
• Administration and operational support of all security monitoring and management systems
• Implement, utilize, tune, and administer security tools such as endpoint protection, network analysis, SIEM, and other essential security solutions
• Provide technical support and troubleshooting when needed regarding existing or new security tools and solutions
• Analyze suspicious emails, phone calls, and other potential security incidents to determine false positives or needs for escalation
• Provide support to remediate vulnerabilities such as patching, implementing controls to mitigate risk, and ensuring secure configuration of systems
• With direction, perform regular threat hunting utilizing security tools and intelligence information to identify and remediate potential security threats
• Perform research and remain aware of new and emerging threats to ensure newly discovered vulnerabilities are addressed
• Act as an Incident Response team member when the incident response team is active. Incident response tasks may be identification, log and event collection and analysis, forensic investigation support, communication support, and evidence handling
• Assist in documenting Standard Operating Procedures SOC playbooks, configuration guides, and secure standards
• Collaborate with Client Success team to gather data for client reports

Requirements

• Basic understanding of information technology and information security including firewalls/UTM’s, IDS/IPS, VPN’s, penetration testing, security event monitoring, and other security systems with an emphasis on threat hunting and log analysis
• Excellent written and verbal communication skills
• Exceptional analytical and problem-solving skills; someone who ‘sees’ the box differently
• Basic understanding of IT infrastructure, information security, and compliance controls
• Ability and willingness to learn other security skills such as pen testing, ethical hacking, digital forensics, or vulnerability management

Minimum Qualifications

• Bachelor’s degree or similar industry experience in cyber security, information technology, computer science, or similar field
• At least 2 years of industry experience in IT Security required. Experience working as a SOC analyst is highly desired
• Prior hands-on experience in network, system, and/or endpoint security operations required
• Hands-on experience with various security tools
• Ability and willingness to learn other security skills such as pen testing, ethical hacking, digital forensics, or vulnerability management
• Solid understanding of information technology and information security including; firewalls/UTM’s, IDS/IPS, VPN’s, penetration testing, security event monitoring, and other security systems with an emphasis on threat hunting and log analysis
• Excellent written and verbal communication skills; experience with writing SOP playbooks or similar
• Exceptional analytical and problem-solving skills; someone who ‘sees’ the box differently
• Experience developing and managing remediation plans/corrective actions
• Understanding of IT infrastructure, information security, and compliance controls
• Comfortable with multiple, current operating environments
• Familiarity with modern exploit techniques, mitigation strategies and counter-attack methodologies
• Prior experience with Digital Forensics and/or Incident Response is highly desired
• This position has the potential to be shift-based in a 24x7 operation

Desired Qualifications

• CISSP, CISM, CISA, GIAC or other recognized security certification is preferred