SOC Engineer

About The Position

Requirements

• Bachelors degree or equivalent combination of education and/or experience
• three to five years experience in a SOC supporting multiple sites and entities.
• CompTIA Network+
• CompTIA Security+
• Requires a high technical capacity with security tools and hardware
• proficiency in communication with a customer/client focus
• strong leadership qualities while conducting in ethical behavior
• problem solving skills
• ability to analyze and prioritize high-risk situations and issues.
• This job operates in a professional office environment.
• This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
• The employee must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.
• Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus.
• CompTIA Network+
• CompTIA Security+

Nice To Haves

• Bachelor’s degree in computer science or information security systems
• certifications in currently used software applications.
• CompTIA CASP+
• CISM
• SANS/GIAC

Responsibilities

• Demonstrate leadership in areas of Information Security related to IT and OT.
• Review and triage information security alerts, provide analysis, determine and track remediation, and escalate as appropriate.
• Participate as a member of the Information Security Incident Response Team (ISIRT) by responding to information security incidents according to the Incident Response Plan.
• Defines and develops security requirements using risk assessments, testing, and analysis of existing systems.
• Maintain the operational integrity of the Security Operations Center (SOC) through monitoring and periodic testing of critical tools and processes.
• Develop working relationships with cross-functional teams from Information Technology, Physical Security, Human Resources, Marketing, Privacy, Legal, and third-party vendors to effectively respond to security incidents.
• Document information security incident reports to capture relevant details including approach, root cause, lessons learned, and process improvements.
• Contribute to the advancement of the security monitoring program through thought leadership and guidance on tools, technologies, and processes that provide automated and proactive detection and prevention.
• Develop and improve process/procedure manuals and documentation related to incident response, threat intelligence, threat detection, and analysis of vulnerabilities.
• Develop and maintain metrics with emphasis on Security Operation Center (SOC) Key Performance Indicators (KPI).
• Provide secondary support for the log management and Security Information and Event Monitoring (SIEM) solution.
• Provide guidance for the network security solution, including next generation firewall solutions.
• Maintain knowledge of industry-wide security best practices and technology.
• As assigned.

Benefits

• paid time off
• medical
• dental
• vision
• life insurance
• 401(k) plan