This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

This position is for a Level 2 Security Monitoring Analyst that will join our Cyber Security Operations team in US Only. The purpose of the role is to work with various tools and technologies, preferably MS Sentinel and Azure Cloud experience for discovering security incidents. Responsibilities include:

• Performing real-time monitoring on malicious activities, intrusions, and infiltration attempts.
• Analyzing logs looking for attack patterns to ensure infiltration attempts are identified and dealt with in a timely manner.
• Performing security analysis and reviewing alerts, escalating to Level-3 as necessary.
• Providing primary level of analysis and technical insights for security incidents.

Qualifications

• Bachelor’s Degree from a four-year college or university in Information Technology, Information Security/Assurance, Engineering, or a similar area of study required.
• Prefer 1-2 years SOC/Information Security experience.
• Prefer experience working as part of globally distributed teams.
• Prefer 1-2 years Managed Services experience.
• Prefer 1-2 years Azure Cloud security experience.
• Prefer 1-2 years MS Sentinel experience.
• Prefer 1-2 years EDR technologies experience.
• Preferred candidates will have one or more certifications in Security/Networking including Security+, GSEC, GCIA, GCIH, or other security-specific vendor/product certifications.
• Proven ability to make decisions and perform complex problem-solving activities under pressure.
• Sharp analytical abilities and the ability to make sound decisions quickly are required.

Requirements

• Primarily responsible for executing the security event assessment of security events from SIEM reporting systems.
• Identify threats to our environment, remediate security threats, and recover systems from security incidents.
• Work closely with Level 2 & Level 3 teams towards the continuous improvement of the service.
• Ensure that all applications are functional and secure (IT security, Application Security, and Information Security).
• Perform real-time security monitoring and incident response activities across global networks, leveraging a variety of tools and techniques.
• Detect incidents through use cases, threat intelligence, and hunting processes across security-relevant data sets.
• Recommend new, repeatable methods for finding malicious activities.
• Ensure all standards including Security Incident Response Process and guidelines are followed.
• Communicate effectively with individuals at all levels of the organization.
• Provide correlation and trending of critical cyber incident activity.
• Improve the service level for security operations and monitoring.
• Create and maintain system documentation for security event processing.
• Author Standard Operating Procedures (SOPs) and training documentation.
• Analyze incident indicators and tactics, techniques, and procedures (TTPs) to identify tools, provide context and severity.
• Manage and maintain security tools to increase incident response efficiency.
• Improve ability to detect and respond to intrusions.
• Help create and maintain process and tools documentation.

Benefits

• Health & Welfare Benefits: Comprehensive plans tailored to your needs, effective from day one.
• Retirement Savings: Robust programs to help you secure your financial future.
• Employee Discounts: Access to a wide range of discounts on merchandise, services, travel, and more.
• Career Growth Opportunities: Paths for advancement within a global organization.
• Paid Training: Learn while you earn with award-winning learning platforms.
• Paid Time Off: Competitive PTO packages to help you recharge.
• Great Work Environment: Join an award-winning culture that values diversity and inclusion.