Cybersecurity Operations Center Analyst

About The Position

Requirements

• Attention to detail and analytical thinking
• Ability to work under pressure and follow procedures
• Basic understanding of networking and operating systems
• Ability to troubleshoot technical issues using multiple sources

Nice To Haves

• Minimum of 4 years combined education (associate or bachelor’s degree) or professional experience in computer science, engineering, information technology, or a related field, with focus on system administration, security operations, or incident response.
• Knowledge of some of the following: Audit requirements (PCI, HIPPA, SOX, etc.) Blue Team/Defensive security concepts Red Team/Offensive security concepts MITRE ATT&CK and Malware TTPs (tactics, techniques and procedures) Current threat landscape (threat actors, APT, cyber-crime, etc.) Log parsing and analysis skill set Incident investigation and response skill set Threat Intelligence
• SIEM tools (Splunk, Crowdstrike NG SIEM, ArcSight)
• Basic TCP/IP networking concepts
• Windows/Linux system administration fundamentals
• Familiarity with host security fundamentals
• Networking security fundamentals
• Cloud computing security fundamentals
• Working Towards certifications in the following areas: Incident Handler (GCIH) Intrusion Analyst (GCIA)

Responsibilities

• Monitor SIEM dashboards for alerts and suspicious activity
• Triage and escalate incidents based on severity
• Document findings and maintain incident logs
• Follow established runbooks for incident handling
• Engage in threat hunting across multiple platforms
• Complete simple backlog user stories
• Participate in after-hours on-call rotation

Benefits

• Benefits for most full-time roles include medical, dental, vision, PTO, life & disability insurance, education assistance, a 401k and a variety of well-being resources.
• Most part-time employees are eligible for prorated PTO, holiday pay, employee development programs, prorated education assistance, and a 401(k).