The SOC Analyst II is a member of the Security Operations Center Team responsible for monitoring and detection of threats and cybersecurity attacks. The SOC Analyst II works independently at times, as well as with other members of the SOC Team, to analyze system and security events, threat and vulnerability advisories, and cyber threat intelligence to identify malicious activity and potential attacks to alert clients to prevent or respond to incidents.
Daily work includes monitoring network and system security events, conducting threat hunting through event data and activity logs, developing alarms for suspicious or malicious activity, escalating alerts to clients and preparing reports to summarize detected activities. The SOC Analyst II executes and helps to create operational processes for consistent monitoring of client environments and should be familiar with varieties of security tools and technologies. The SOC Analyst II additionally works to support the company’s Incident Response Team by conducting monitoring and analysis during the course of incident management engagements.
This role is authorized to work remotely and may require up to 10% travel to client locations generally within the domestic United States.
Essential Functions:
- Monitor security events and escalate verified alerts according to procedures to activate incident response processes.
- Conduct analysis of network traffic and computer system discovery applications.
- Assist in preparing client deliverables including reports, briefing presentations and recommendations to communicate security information, event summaries, vulnerabilities and threats to clients on a routine and periodic basis, helping to distill technical concepts into valuable and informative information..
- Contribute to the development of effective, efficient and repeatable processes to improve the operations of the SOC and value to clients.
- Perform threat hunting activities in client networks through proactive analysis of log, network and system data to identify undetected threats.
- Provide sound technical recommendations that enable remediation of security issues.
- Identify and incorporate applicable indicators of compromise (IOCs) into network security tools to protect client networks.
- Partner with security engineering and clients to develop and refine SIEM correlation rules.
- Utilize advanced threat models, SIEM use cases, and incident response playbooks specific to customer network requirements.
Required Managerial and Interpersonal Skills and Qualifications:
- Capable of working independently, establishing priorities and managing task completion within deadlines that are responsive to client needs within a team of SOC analysts working together to support diverse company types and wide ranging client capability levels.
- Able to communicate effectively through writing, speaking, and presenting to client technical representatives.
- Team player capable of productively contributing to the Company’s mission by supporting fellow teammates and clients in a dynamic growing and changing environment.
Essential Technical Experience and Knowledge Skills:
- Knowledgeable in network traffic analysis, threat detection, and advanced threat tactics, techniques and procedures (TTPs).
- Knowledgeable of network and security architecture principles, firewall and IDS/IPS fundamentals, endpoint security systems and other security protective/detective systems.
- Experience in cybersecurity event analysis, intrusion detection, and security operations.
Additional Background and Experience Requirements:
- Possess an industry certification including CISSP, GCIH, GMON, GCIA, OSCP, CEH, CompTIA Network+, Security+ or other recognized credentials.
- Must be able to complete pre-employment screening, State of Texas background investigation, and be capable of obtaining a US Government Secret level clearance.
Preferred Skills and Qualifications:
- Computer Science or related 4-year degree.
- Experience creating detailed queries and scripts, such as regular expressions, for log, event and correlation analysis.
- Experience with quickly learning and understanding complex environments, independently reaching stretch goals, and continually improving knowledge and capabilities.
Job is Archived
You may have followed an invalid link or the job you are looking for has been archived.
Learn About GoHire