SOC Security Analyst

About The Position

Requirements

• Associate's Degree or two or more years of work experience
• Three or more years of relevant work experience
• Three or more years of experience as a cybersecurity analyst

Nice To Haves

• Bachelors or higher degree in Computer Science, Information Security or similar discipline
• Information Technology security related certifications like: CompTIA A+, Network+, Security+, Linux, Cisco CCNA, Microsoft Certified Azure Fundamentals, AWS Cloud Practitioner or SANS GSEC
• Understanding of command line scripting and implementation (ie. Python, Powershell, Bash Shell)
• Ability to write new content/searches/scripts (e.g., Splunk dashboards, Splunk ES alerts, QRadar, RSA Netwitness, SumoLogic, etc.)
• Experience with tools such as Active Directory, Cisco IOS, MS Server, AMP, Splunk ES, SNORT, Yara, IronPort, and Firepower
• Strong understanding of networking (TCP Flags, TCP Handshake, IP addressing, Firewalls, Proxy, IDS, IPS)
• Ability to perform NetFlow / packet capture (PCAP) analysis
• Experience with basic cyber threat hunting
• Strong documentation and communication skills
• Exceptional problem solving skills
• Proactive in engaging with customers, client executives and Verizon management teams
• Knowledge of Transmission Control Protocol/Internet Protocol (TCP/IP), RCF 1918 and common attacks against TCP/IP protocol
• Very good knowledge of Microsoft Windows and Server Operating System
• Understanding of threat landscape and indicators of compromise

Responsibilities

• Provide “eyes on glass” real-time security monitoring in a 24x7 environment by monitoring security infrastructure and security alarm devices for Indicators of Compromise utilizing SIEM and cybersecurity tools
• Performing level 1 assessment of incoming alerts (assessing the priority of the alert, determining severity of alert in respect to customer environment, correlating additional details) and coordinate with Senior Analysts for high priority incidents, if necessary
• Provide basic security event detection and initial triage of security events, opening tickets in designated ticketing systems within SLO and/or SLA guidelines
• Performing administrative routines of SOC like evaluating reports and SIEM dashboards, reviewing ticket escalations
• Incoming call handling from and initiating trouble tickets, if applicable
• Provide health and availability analysis, opening tickets in designated ticketing systems within SLO and/or SLA guidelines
• Follow documented escalation procedures
• Identify recurring incidents for problem management purposes
• Coordinate with Senior Analysts for high priority incidents
• Performing various related tasks as assigned

Benefits

• medical
• dental
• vision
• short and long term disability
• basic life insurance
• supplemental life insurance
• AD&D insurance
• identity theft protection
• pet insurance
• group home & auto insurance
• matched 401(k) savings plan
• up to 8 company paid holidays per year
• up to 6 personal days per year
• paid parental leave
• adoption assistance
• tuition assistance
• premium pay such as overtime, shift differential, holiday pay, allowances
• up to 15 days of vacation per year