SOC Analyst

Verizon•Lake Mary, FL

2d•$75,500 - $135,000•Hybrid

About The Position

The Threat Management Center (TMC) is the first line of defense for Verizon's networks and information systems against misuse and attacks. The TMC performs 24x7x365 monitoring and responds to automated and user-reported cyber security incidents that may impact people and information important to Verizon. The TMC plays an integral role in driving forward the security intelligence and capabilities in Cyber Defense. Verizon is looking for an innovative and driven leader who will be responsible for enhancing our existing threat defense capabilities and maturing our current processes within Verizon's unique security landscape. A TMC Security Operation Center (SOC) Analyst works in a fast paced collaborative environment and is required to be adaptable, open to learning and teaching, and able to think creatively to effectively navigate the evolving threat landscape. Analysts are required to proactively identify signs of misuse and abuse using various logs and security techniques. This role plays a critical role in Verizon's enterprise Cyber Defense program.

Requirements

Bachelor's degree or four or more years of work experience.
Three or more years of relevant experience required, demonstrated through work experience and/or military experience.
Two or more years of experience in Information Security, Technology or Technical Risk Analysis
Two or more years of experience working with SIEM technologies (i.e. Splunk, SecOps)

Nice To Haves

Experience in SOC utilizing system, cloud, application and network logs.
Practical application of Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) tools to identify threat patterns, enrich investigations, and build automation-supported workflows.
Comprehensive understanding of cyber based adversarial frameworks including MITRE ATT&CK and Lockheed Martin’s Cyber Kill Chain.
High-level understanding of Operating Systems: Windows, Unix/Linux, and OSX Operating Systems in support of identifying security incidents.
Proficient knowledge of the cyber threat landscape including types of adversaries, campaigns, and the motivations that drive them.
Experience working with analysis techniques, identifying indicators of compromise, threat hunting, and identification of intrusions and potential incidents.
Certifications like: Network+, Security+, CISSP, CISM, and/or CFE

Responsibilities

Performing day-to-day operations for TMC’s Security Operation Center (SOC).
Monitoring security alerts from a variety of different technologies across multiple platforms in order to identify and mitigate security incidents affecting the Verizon enterprise.
Assessing potential cyber threats from a variety of intakes workflows and performing appropriate responses like threat containment.
Leveraging security tools and logs in order to complete a detailed and accurate assessment of security alerts and threats affecting the Verizon enterprise.
Analyzing security, cloud, and application security risks and ensuring threats are detected and mitigated accurately and within required time frames.
Providing support and analysis for priority and high profile security incidents.
Ensuring the case management and alert development life cycles are followed or adjusted when necessary. This includes writing comprehensive case notes and escalation summaries.
Enhancing techniques, workflows and processes to drive the TMC operational and strategic growth (continuous improvement). This includes updating and maintaining process documentation.
Collaborating on efforts to support the growth and maturity of ITO’s enhanced monitoring capabilities of critical data and high valued assets.
Promoting an environment of collaboration and individual accountability when it comes to problem-solving, decision-making, and process improvements.