IT Security Operations Center Analyst I-NIGHT Shift

Profile

u003cpu003eu0026nbsp;Security Ops Analyst I - Nightu003c/pu003enu003cpu003eu003cstrongu003eKEY ACCOUNTABILITIES:u003c/strongu003eu003c/pu003enu003culu003enu003cliu003eProvide 24/7/365 support working rotating day, weekend, and holiday shiftsu003c/liu003enu003cliu003eProvides direction for the Security Operations Center (SOC) Level1 team membersu003c/liu003enu003cliu003eReview and respond to Level 1 escalated security eventsu0026nbsp;u003c/liu003enu003cliu003eAbility to take on additional tasks as defined by the Information Security Management Teamu003c/liu003enu003cliu003eIdentify and document information security risks and propose mitigating controlsu003c/liu003enu003cliu003ePerforms vulnerability scans and advanced security checksu003c/liu003enu003cliu003eSupport the log collection, security scanning, intrusion detection, content filtering, and other security-related systemsu003c/liu003enu003cliu003eMaintain knowledge of adversary tactics, techniques, and procedures (TTP)u003c/liu003enu003cliu003eParticipates in security incident conference calls and creates root cause analysis reportsu003c/liu003enu003cliu003eCreates daily, weekly, and monthly reports to security managementu003c/liu003enu003cliu003eCreates and updates runbooks and procedures as neededu003c/liu003enu003cliu003eCan perform threat hunting, malware analysis, sandbox, and other security exercisesu003c/liu003enu003cliu003eAssists with containment of threats and remediation of environment during and after an incidentu003c/liu003enu003cliu003eConducts hunting activities based on internal and external threat intelligenceu003c/liu003enu003cliu003eEscalates high or critical severity level incident to the infrastructure security team according to the playbook and standard operating proceduresu003c/liu003enu003cliu003eWork on complex tasks assigned by leadership, which may involve coordination of effort among Level 1 SOC analysts and the IT security teamsu003c/liu003enu003cliu003eServe as a subject matter expert in at lease on security related area (EDR, NDR, SIEM, Vulnerability management)u003c/liu003enu003cliu003ePerforms enterprise level security operations support and escalations to the infrastructure security team as needed.u0026nbsp;u003c/liu003enu003cliu003eResponsible for ensuring confidentiality for all written and electronic confidential, and proprietary informationu003c/liu003enu003cliu003ePerform such other/additional duties as may from time to time be assigned.u003c/liu003enu003c/ulu003enu003cpu003eu003cstrongu003eTECHNICAL SKILLS AND COMPETENCIES REQUIRED:u003c/strongu003eu003c/pu003enu003culu003enu003cliu003eExtensive experience in incident response, incident handling, and security operationsu003c/liu003enu003cliu003eExperience in forensics, malware analysis, and threat intelligenceu003c/liu003enu003cliu003eDemonstrated experience with ISO 27001/27002 standards, the HiTrust Common Security Framework, HIPAA Privacy and Security Regulations.u003c/liu003enu003cliu003eBasic understanding of incident handling techniques within a cloud-based environment such as Azure or AWSu003c/liu003enu003cliu003eStrong knowledge of current security threats, techniques, and landscapeu003c/liu003enu003cliu003eAbility to research, develop, and keep abreast of tools, techniques, and process improvements in support of security detection and analysis in accordance with current and emerging threat and attack vectors.u003c/liu003enu003cliu003eKnowledge of Advanced Persistent Threats (APT) tactics, technics, and procedureu003c/liu003enu003cliu003eServe as a subject matter expert in at least one security related area (EDR, NDR, SIEM, Vulnerability management)u003c/liu003enu003cliu003eUnderstanding of common network infrastructure devices (routers and switches) and basic network protocols such as TCP/IP, DNS, and HTTPsu003c/liu003enu003cliu003eExcellent oral and written skills utilizing Office 365 productsu003c/liu003enu003cliu003eStrong analytical and problem-solving skillsu003c/liu003enu003cliu003eHands-on experience with multiple security technologies such as antivirus software, intrusion detection, firewalls, and content filteringu003c/liu003enu003cliu003ePrior experience with data protection, cryptography, key management, identity, and access management (IAM), and cloud security within SaaS, IaaS, PaaS, and other cloud environmentsu003c/liu003enu003cliu003eAbility to correlate data from multiple data sources to create a more accurate picture of cyberthreats and vulnerabilitiesu003c/liu003enu003cliu003eAbility to reverse engineer malware is a plusu003c/liu003enu003c/ulu003enu003cpu003eu003cstrongu003eEDUCATION AND CERTIFICATIONS:u0026nbsp;u0026nbsp;u003c/strongu003eu003c/pu003enu003cpu003ePreferred:u0026nbsp;u003c/pu003enu003cpu003eu0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp;Bacheloru0026rsquo;s degree in information systems or information technology or relevant experienceu0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp; u0026nbsp;u0026nbsp;u003c/pu003enu003cpu003eu003cstrongu003eEXPERIENCE REQUIRED:u003c/strongu003eu003c/pu003enu003cpu003e3 years working in a SOC and/or strong security technology operations experienceu003c/pu003enu003cpu003eu003cstrongu003eSCHEDULE: DAYu003c/strongu003eu003c/pu003enu003cpu003eu003cstrongu003e36 Hour Work Week - 3 Nights per weeku003c/strongu003eu003c/pu003enu003culu003enu003cliu003e12-hour shiftu0026nbsp;u003c/liu003enu003cliu003eNight shiftu003c/liu003enu003cliu003eHolidaysu003c/liu003enu003cliu003eWeekend shiftu003c/liu003enu003c/ulu003enu003cpu003eu0026nbsp;u003c/pu003e,EqualOpportunityEmployerDescription:null,PayTransparencyPolicyStatement:null,MatchScore:1.0,HasApplied:false,ApplicationJobBoardName:null,ApplicationJobBoardId:null,DateApplied:null,Salaried:false,CompensationAmount:null,PublishingStatus:1,Links:[],BehaviorCriteria:[],MotivationCriteria:[],EducationCriteria:[],LicenseAndCertificationCriteria:[],SkillCriteria:[],WorkExperienceCriteria:[],JobBoardMemberships:[{JobBoardId:2e3d7edd-7174-48cf-a542-539119bbcf9f,PublishedInternal:true,PublishedExternal:false,ExternalPostedDate:null,InternalPostedDate:2022-04-12T17:32:04.741Z},{JobBoardId:631c7b72-f9c7-4adf-9109-9967ce8334e4,PublishedInternal:true,PublishedExternal:true,ExternalPostedDate:2022-04-12T17:32:04.741Z,InternalPostedDate:2022-04-12T17:32:04.741Z}],AssessmentUri:null,AssessmentStatus:null,OpportunityIsClosed:false,TravelRequired:null,TravelDescription:null,SupervisorName:null,Assessments:[],ApplicationId:null,CompensationAnnualMinimum:null,CompensationAnnualMaximum:null,CompensationHourlyMinimum:null,CompensationHourlyMaximum:null,CompensationCurrency:null});

Company info

Sign Up Now - OperationsCrossing.com