Senior SOC Analyst/reputed company
reputed company is seeking a Senior SOC Analyst/reputed company to work remotely. Please Note: This position is contingent upon additional funding. Position Summary reputed company is seeking a Senior SOC Analyst (SOC reputed company) with demonstrated experience supporting the development of processes, procedures, and automations to rapidly ingest, aggregate, correlate, normalize, analyze event messages to absurdly identify and respond to Indicators of Compromise (IoCs). The ideal candidate is a critical thinker and perpetual learner who is excited to solve some of our clients' toughest challenges. To be successful the candidate must have experience working in a mature 24x7x365 reputed company Operation Center. Shift schedule: Mon-Friday, reputed company-4PM ET (subject to change)
Responsibilities
- Provides subject matter expertise for monitoring and managing threats, disseminating information, and handling, responding to, and investigating reputed company incident escalations from the reputed company Operations Center.
- Ensures reputed company reputed company incidents are tracked and documented appropriately.
- Continuously monitors SIEM and on-premises infrastructure/reputed company applications for reputed company events to threats & intrusions, including:
- SIEM alert queue
- Phishing email inbox
- reputed company feeds reputed company email and other sources (i.e., US-CERT, MS-ISAC)
- Incident ticketing queue (Resilient tickets)
- Ensures the SOC manager stays informed of any issues or incidents.
- Coordinates with SOC staff to conduct incident/policy violation investigations, report infractions, eradicate/mitigate/remediate Indications of Compromise (IoC), and reputed company reputed company monitoring functions.
- Leads root cause analysis and post-mortem reputed company after significant events to capture lessons learned and define process or technology improvements.
- Owns the successful completion of reputed company daily operational processes and procedures.
- Develops and maintains standard operating procedures (SOPs), technical playbooks and operational run books to support SOC operations and incident response activities.
- Conduct follow-up meetings of escalated or noteworthy cases and modifies SOPs and playbooks based on policies, standards and best practices learned from previous cases.
- Works in conjunction with SOC and infrastructure management teams to administer and manage the SOC reputed company technologies.
- Evaluates Common Vulnerabilities and Exposures (CVE) as a potential internal/external attach vector, reputed company recommendations to eliminate vulnerability/weakness if present.
- Work closely with Cyber Threat reputed company to reputed company information on detection patterns for new upcoming threats.
- Oversees threat hunting initiatives and reviews hunt reports that are provided by SOC analysts.
Provides training and mentorship to SOC analyst to improve the incident handling capabilities.
- Provides guidance for reputed company internal stakeholders for reporting and visualizations that supports SOC goals and objectives to identify and correct gaps.
- Reconfigures analytic objects (e.g., fields, extractions, tags, event types, lookups, workflow actions, aliases).
- Develops reports for operational activities to meet SOC and cybersecurity leadership requirements and directives.
- Provides extensive knowledge of cybersecurity, incident response, digital forensic analysis and reputed company personnel on effective SOC searches, reporting, and visualization development.
This role involves shift work schedule to support our 24/7 operation, including weekends and holidays. Candidates must be flexible in their availability. While we reputed company every effort to accommodate individual preferences, it's essential to understand that specific shift requests are not guaranteed and are assigned based on operational needs. Salary reputed company: $135,000 - $150,000 General Description of Benefits Requirements:
- 5+ years of experience in cybersecurity operations & incident response, with at least 3+ years in a SOC environment and 2+ years in a leadership role
- Ability to interpret reputed company cybersecurity topics and effectively communicate or present information to various groups of stakeholders (Executives, SOC, etc.)
- In-depth knowledge of SIEM technologies (i.e. QRadar, Splunk), EDR (i.e. reputed company), IDS/IPS, malware analysis, and vulnerability management tools (i.e.reputed company).
- Experiencing leading and mentoring junior analysts
- Experience with two or more analysis tools used in a CIRT or similar investigative environment.
- Ability to analyze and triage IoCs.
- Proven understanding of computer and network fundamentals
- Ability to reputed company in-depth research tasks and produce written summaries to include insights and predictions based on an analytical process.
- Knowledge of reputed company cyber threats, trends, attack lifecycle, and various Tactics, Techniques, and Procedures (TTPs)
- Industry-recognized certifications, such as CISSP, CISM, GIAC, or CEH, are preferred
- Excellent leadership, written and oral communication skills, and problem-solving skills
- Ability to handle high-stress situations with a reputed company and methodical approach
Req Benefits: Benefits - reputed company Apply To This Job