Security Operations Analyst III

About The Position

Requirements

• KNOWLEDGE, SKILLS AND ABILITIES
• Experience driving measurable improvement in monitoring and response capabilities at scale.
• Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP, and other network and system monitoring tools.
• Knowledge of a variety of Internet protocols.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Working knowledge/experience with network systems, security principles, applications, and risk and compliance initiatives such as Gramm-Leach Bliley Act (GLBA), Payment Card Industry (PCI), Health Information Portability and Accountability Ace (HIPAA), Sarbanes-Oxley Act (SOX) and the General Data Protection Regulation (GDPR).
• Working knowledge of the MITRE ATT&CK Framework.
• EDUCATION AND/OR EXPERIENCE
• High School Diploma or General Education Degree (GED) required
• Bachelor's Degree in Information Technology, Security Engineering, or related field preferred
• 4-6 years of information security monitoring and response related experience required
• LICENSES AND CERTIFICATIONS

Nice To Haves

• CompTIA Security + preferred or CEH - Certified Ethical Hacker preferred or GCIF - GIAC Information Security Fundamentals preferred or SCCP - Systems Security Certified Practitioner preferred or CISA - Certified Information Systems Auditor preferred or CISM - Certified Information Security Manager preferred or CISSP - Certified Information Systems Security Professional preferred or OSCP - Offensive Security Certified Professional preferred or GSE - GIAC Security Expert preferred or

Responsibilities

• Monitors SIEM, EDR, and other security monitoring solutions; processes responses for security events on a 24x7 basis.
• Provides feedback to incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
• Stays current with and remains knowledgeable about new threats.
• Analyzes attacker tactics, techniques, and procedures (TTPs) from security events across a large heterogeneous network of security devices and end-user systems.
• Guides and participates in threat modeling collaboration with other members of the security team.
• Guides and leverages automation and orchestration solutions to automate repetitive tasks.
• Assists with incident response as events are escalated, including triage, remediation, and documentation.
• Leads threat and vulnerability research across event data collected by systems.
• Leads, investigates, and documents events to aid incident responders, managers, and other SOC team members on security issues and the emergence of new threats.
• Works alongside other security team members to hunt for and identify security issues generated from the network, including third-party relationships.
• Shares information as directed with other team members.
• Manages security event investigations, partnering with other departments (e.g., IT) as needed.
• Evaluates SOC policies and procedures and recommend updates to management as appropriate.
• Adheres to service level agreements (SLAs), metrics, and business scorecard obligations for ticket handling of security incidents and events.
• Partners with the security engineering team and recommend improvements to tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
• Leverages knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security, and data networking, to offer global solutions for a complex heterogeneous environment.
• Maintains working knowledge of advanced threat detection as the industry evolves.
• Performs other duties as assigned.

Benefits

• Generous Paid Time Off (PTO) in addition to paid federal holidays.
• Student debt employer repayment program.
• 401(k) retirement plan with a 6% match.