Position:

• 2 nd and 3 rd shift SOC Analyst

Skills required:

• Professional communication

• Experience with SIEM tools

• Endpoint Detection & Response

• Attention to detail with an investigative mindset

Primary Responsibilities:

• Alert Investigation: Continuously monitor security alerts and notifications from various security information and event management (SIEM) tools, intrusion detection/prevention systems (IDS/IPS), firewalls, Endpoint Detection & Response (EDR), and other security platforms.

• Conduct initial triage of alerts to determine the potential severity and legitimacy of the threat.

• Investigate suspicious activity to identify security events or incidents.

• Conduct initial triage of alerts to determine the potential severity and legitimacy of the threat.

• Phishing Investigation: Manage and analyze reported suspicious emails. Determine the legitimacy or malicious intent of the emails and categorize them for tracking and reporting.

• Incident Identification & Escalation: Identify potential security incidents through real-time analysis of security events.

• Escalate validated incidents to Tier 2 or Tier 3 analysts with detailed information on the nature and scope of the incident.

• Basic Threat Intelligence and Analysis: Provide basic correlation and context to identify trends in security events that may indicate ongoing or emerging threats.

• Document findings and share key insights with senior SOC analysts and security management for further investigation.

• Follow Standard Operating Procedures (SOPs): Adhere to established security SOPs for responding to incidents, reporting anomalies, and escalating security issues.

• Experience working with users/clients outside of your organization, customer service focus.

• Other Duties: Be adaptable and perform additional responsibilities as assigned by management to support the MSSP's evolving needs.

Qualifications:

• Working knowledge of policies, procedures, and protocols of a Security Operations Center

• Knowledge of security tools and technologies to include SIEM, EDR, Firewalls, IPS/IDS, Threat Intel, Email Security, and Microsoft Cloud Platforms.

• Understanding of security frameworks and incident response frameworks.

Physical demands:

• None

Benefits (If hired after internship):

• Health, Dental, and Vision insurance- 100% employer contribution for the employee under the silver plan

• Life and disability insurance

• PTO- 10 days for the first 2 years, 15 days at 2 years, 20 days at 5 years

• 5 sick days

• 6 holidays- New Years, Memorial Day, 4 th of July, Labor Day, Thanksgiving, Christmas

• 4 floating holidays

• Training and certification opportunities for career advancement

• 401k matching

• Paid Maternity and Paternity leave