Description:
We are looking for a SOC Analyst to join our Information Security team to detect, analyze, and limit intrusions and security events. The SOC Analyst will work collaboratively to detect and respond to information security incidents, maintain and follow procedures for security event alerting, and participate in security investigations. This role will also perform tasks such as monitoring, research, classification, and analysis of security events that occur within the environment. The ideal candidate will have a strong understanding of the security industry, including current and emerging vulnerabilities and threats, as well as an ongoing understanding of key business and technological processes. Success in this role requires strong analytical skills, attention to detail, and the ability to adapt in an evolving threat landscape.
Primary Duties And Responsibilities
- Assist in maturing and optimizing the OneStream Security Operations Center (SOC) discipline to support managed security services focused on vulnerability management and security information and event management engagements.
- Work closely with support partners to continually tune and enhance security alerting and remediation efforts across the organization.
- Monitor and analyze security alerts and Security Information and Event Management (SIEM) tools to identify and remediate security issues.
- Monitor and analyze alerts and notifications from multiple security solutions, including EDR, Azure, vulnerability scanning tools, and other platforms.
- Collaborate with and serve as a liaison between key security vendor solution partners.
- Recognize potential, successful, and unsuccessful intrusion attempts and compromises through the review and analysis of relevant event details and summary information.
- Communicate, escalate, and/or mitigate alerts regarding intrusions and compromises impacting network infrastructure, applications, and operating systems.
- Conduct operations related to cybersecurity incident response technologies, including network logging and forensics, SIEM tools, security analytics platforms, log search technologies, and host-based forensics, as needed.
- Perform scanning and monitoring activities to provide in-depth visibility into known and unknown vulnerabilities and threats that may pose risks to the environment.
- Document actions within cases to effectively communicate information to internal and external stakeholders.
- Assist Security Engineers, as needed, in strengthening the organization’s overall security posture.
Required Education And Experience
- BS/BA degree in Computer Science, Engineering, Information Technology, or a related field, or equivalent industry experience.
- 1+ year of Infrastructure and Information Security experience, preferably within an enterprise environment.
Preferred Education And Experience
- Experience working within cloud environments, with Microsoft Azure preferred.
- Industry certifications such as ITIL, Microsoft Certified Systems Engineer (MCSE), CompTIA Security+, CCNA, CISSP, OSCP, GCIA, GPEN, GWAPT, GSEC, GCIH, and/or GMON are preferred.