SOC Analyst

Shift Schedule

Day Shift - Thursday, Friday and Saturday. There is a mandatory thirty minute lunch that is unpaid so a 12 1 / 2 hour work day.

Minimum one day a week on site but most likely we will have to plan on two days per week on site.

Job Purpose

The Security Analyst is responsible for executing processes that prevent, detect and respond to security events across the organization. The analyst will stay informed of advances in attacker techniques and provide feedback for improvements to tools and processes as needed. Additional responsibilities include : identifying vulnerabilities and creating remediation plans. Ensure that SIEM tools are functioning appropriately, and take an active role in responding to security alerts, assessing and quickly containing malicious activity. The Security Analyst will staff a 24x7x365 Security Operations Center (SOC) and must be able to adjust to a flexible work schedule when necessary.

Essential Job Duties & Responsibilities

• Monitor SIEM alerts from a variety of application and infrastructure platforms and leverage additional security tools for executing triage and incident escalation processes.
• Research security trends and recommend improvements.
• Validate the effectiveness of security tools through rigorous testing, tuning and continuous improvement.
• As needed, administer security changes such as add / change / delete user accounts or group profiles and maintain user access lists.
• Maintain confidentiality on all sensitive security matters.
• Know and enforce all information security policies
• Identification of security system status or security changes that are not within governance for SOC Tools
• Provide alert monitoring, investigation and analysis across all SOC security tools
• Document security alerts according to SOC procedures.
• Record and produce metrics as assigned.
• Monitor SOC mailboxes and respond within service level agreements
• Monitor SOC Help Desk ticket queue and provide resolution within service level agreements
• Must be able to adjust to a flexible work schedule when necessary.

Other Duties

Knowledge, Skills & Abilities

Nice to Have : 1.Comptia Security+

2. Network Support

3. Troubleshooting

4. MITRE

5. Incident Handling

6. SOC and SIEM