Job Description

Position Title: Lead SOC Analyst 100% remote

Location: Remote

Duration: 6 months contract to hire


Top 3 Must Have Skills:

• Prior experience leading a team or ability to lead a team
• Certifications over college education - ITIL, CISSP, GIAC, GCIH, GNFA, and GDAT to ITIL, CISSP, GIAC, GCIH, GNFA, and GDAT

Notes from Manager: Needs to have prior experience with leading projects or team members but does not want someone who is currently a manager.
Needs skills in incident response along with SIEM, EDR, Compliance/Policy Experience



Interview Process: 1 interview, 1 tech screening



Senior SOC Analyst 100% remote

• Provide Shift leadership and support to the SOC operation.

• Provide Mentoring and oversight of Junior analysts. Guide intrusion event investigations.
• Monitoring security events in various SIEMs and other security feeds and systems such as e-mail, phone, and chat.
• Perform analysis of threat events and review escalations from lower-level analysts to appropriate groups as needed.
• Review Incident Analysis reports for completeness and accuracy.
• Ensure SOC procedures and playbooks are followed.
• Perform Ticket review and quality control.
• Develop and maintain a security incident response process.
• Identity new attack vectors and recommend methods to detect them.
• Perform analysis of network security needs and contribute to the design, integration, and installation of hardware and software.
• Maintain and configure security systems, e.g., Network-based Intrusion Detection Systems (IDS), Endpoint Detection and Response (EDR), Web Security Gateway, vulnerability management, and other security technologies.
• Perform internal audits to ensure compliance or existing security guidelines.
• Performs other duties as required.

Requirements

• 5-6 years of technical hands-on experience in a SOC or related field.
• Azure Compliance Experience - investigating Azure environment and making sure they meet best practices
• EDR Experience
• Knowledge of phishing experience
• SIEM/Log experience
• Knowledge of networking and Systems (windows/linux)
• Preferred Certifications but not limited to ITIL, CISSP, GIAC, GCIH, GNFA, and GDAT.
• Functional understanding of a diverse set of networked applications requiring application traffic management solutions, including SSH, FTP, DNS, and NTP services
• Solid understanding of TCP/IP and routing protocols.
• Good investigation skills and natural curiosity for security processes are desirable.
• Detailed working knowledge of security architectures.
• Working knowledge of modern operating systems, Linux, Windows, and macOS.
• College Degree Preferred.
• Motivated Self-starter.
• Forward-thinking, detail-oriented person.

Technical writing and verbal communication skills

Job Tags

Full time, Contract work, Part time, Internship, Seasonal work, Shift work,

Similar Jobs