Job Description:The Security Operations Center Analyst will work as part of a team at the tier one level to monitor and defend against cyber threats to the organization's information technology infrastructure and assess security systems and measures for weaknesses and possible improvements. In this role, you will protect the organization's online and on premise infrastructure, monitor events from multiple technologies to identify suspicious activity and identify and mitigate risks before an incident occurs. You will review incident notifications, triage and execute runbooks and report their findings to senior team members.
We seek a Risk and Security Analyst II will design, develop, implement and troubleshoot various information system and cybersecurity software. In this role, you will develop, test and validate solutions to remediate exploitable conditions on devices such as web servers, mail servers, routers, firewalls and intrusion detection systems.
- Provide consultation and advice for low-to-moderate complexity risk and security matters.
- Contribute to the design of risk and security solutions, processes or policies requiring a general understanding of risk and security practices and procedures.
- Identify and assess risk and security threats with moderate business impact, taking appropriate action.
- Perform routine activities to ensure compliance with risk and security or regulatory policies, standards, procedures and guidelines.
- Independently solve moderately complex issues with minimal supervision, while escalating more complex issues to appropriate staff.*Other duties as assigned
Key Accountabilities:- Monitor events and alerts from multiple technologies to detect malicious activity and report probable cyberattacks to senior analysts.
- Perform real time proactive security monitoring, detection and response to security events and incidents.
- Collaborate with the team to generate transfer of knowledge documentation for other analysts on duty to effectively remediate security incidents.
- Conduct moderately complex investigations of security events generated by the detection mechanisms and research their root cause.
- Utilize advanced network and host forensic tools to triage and scope an incident.
- Update the company's security systems regularly to avoid cyberattacks.
- Independently solve moderately complex issues with minimal supervision, while escalating more complex issues to appropriate staff.
- Other duties as assigned
QualificationsMinimum Qualifications- Bachelor's degree in a related field or equivalent experience
- Administrative skills in various operating systems
- Knowledge of security related principles, techniques, technologies and their functions
- Minimum of two years of related work experience
- Able and willing to work on rotating shifts including weekends as needed
Preferred Qualifications:- Industry recognized information security certifications
- Experience with security information and event management, email, network and host forensic tools
- Knowledge of various cyber attacks and hacker techniques
- Experience working in network defense, ethical hacking, incident response, computer forensics, malware analysis and reverse engineering