Job Description
Overview:
We are seeking a skilled and dedicated Security Operations Center (SOC) Analyst to join our team and help protect our clients from evolving cyber threats. As an L3 analyst, you will play a pivotal role in identifying, defending, and remediating adversary activity, ensuring security incidents are handled swiftly and accurately. You will mentor junior analysts, communicate effectively with clients, and contribute to our overall security strategy, all while keeping pace with a dynamic and fast-moving threat landscape.
---
Key Responsibilities:
- Serve as a technical expert and escalation point for L1 and L2 analysts, providing guidance on advanced security incidents.
- Take ownership of complex security incidents, conducting in-depth analysis of systems, logs, and network activity to detect, trace, and mitigate attacks.
- Analyze and respond to active intrusions, guiding the team through remediation efforts and ensuring incidents are resolved efficiently and effectively.
- Document and communicate incident findings clearly to clients, ensuring they understand the situation and the next steps for remediation.
- Monitor and analyze security events from multiple sources, including SIEM logs, endpoint logs, and EDR telemetry.
- Perform forensic analysis of compromised endpoints and assist in advanced malware investigations.
- Hunt for suspicious activity based on curated intelligence and anomalous behavior.
- Collaborate with Incident Response teams to manage and resolve security incidents.
- Ensure incidents are properly identified, analyzed, and escalated when necessary.
- Contribute to the development of security policies, procedures, and automation to improve incident response efficiency.
- Serve as a mentor for junior analysts, fostering a collaborative and learning-driven environment.
---
Basic Qualifications:
- People Skills:
- Able to thrive under pressure while maintaining professionalism.
- Excellent written and verbal communication skills, with the ability to explain complex technical concepts in a simple and understandable way.
- Strong collaboration skills and the ability to work effectively in a global, distributed team.
- Availability to work on a 24/7 rotating shift schedule, including nights and weekends.
- Technical Skills:
- Knowledge and experience with SIEM solutions, Cloud App Security tools, and EDR.
- Advanced understanding of network protocols and telemetry.
- Experience analyzing forensic artifacts from Windows and Unix systems.
- Expertise in endpoint, web, and authentication log analysis.
- Hands-on experience with SIEM/EDR detection creation and response to modern authentication attacks.
- In-depth knowledge of common attack vectors and adversary tactics.
- Familiarity with malware detection, including both dynamic and light static analysis.
- Understanding of email security, including business email compromise (BEC) attacks.
---
Preferred Qualifications:
- Experience:
- 5+ years in a SOC, TOC, or NOC environment, with a focus on intrusion analysis, incident response, or digital forensics.
- Certification in GCIA, GCIH, or similar security certifications (e.g., CISSP, Security+, CEH, etc.).
- Technical Expertise:
- Familiarity with tools like Sentinel, Splunk, Microsoft Defender, and Crowdstrike Falcon.
- Knowledge of programming languages such as JavaScript, Python, Lua, Ruby, GoLang, or Rust.
- Additional Skills:
- Experience with ransomware threat actor mitigation.
- Experience with network monitoring metadata and O365 attack paths.
---
Education:
- Bachelor's degree in Information Security, Computer Science, or a related field, or equivalent professional experience.
---
We value teamwork, growth, and proactive learning, and we are committed to fostering an inclusive work environment where each individual is empowered to contribute, grow, and succeed. If you're passionate about cybersecurity and eager to make a significant impact in a rapidly evolving field, we encourage you to apply.
Employment Type: Full-Time
Salary: $ 40,000.00 140,000.00 Per Year
Job Tags
Full time, Night shift, Rotating shift,