SOC Analyst

Job title - SOC Analyst

JOB DESCRIPTION:

The Analyst, Security Operations Center is accountable to support the SOC in two core functions for the enterprise. The first is to monitor the day-to-day operations of the in-place security solutions while the second is the identification, investigation and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines and procedures as well as conducting vulnerability audits and assessments. The SOC Analyst is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals after appropriate training.

Major Responsibilities

o Review baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.).

o Monitor operational configurations of all in-place security solutions as per the established baselines.

o Monitor all in-place security solutions for efficient and appropriate operations.

o Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and work with the functional team to devise plans for appropriate resolution.

o Participate in Incident Response activities.

o Execution of vulnerability assessments, penetration tests and security audits as directed.

o Provide on-call support for IT management for all in-place security solutions. o Responsible for special projects as assigned by management

o Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions and processes as well as new attacks and threat vectors.

o Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.

Skills and Competencies

o Analytical and problem-solving abilities, highly self-motivated and keen attention to detail

o Experience working in a team-oriented, collaborative environment

o Ability to effectively prioritize and execute tasks in a high-pressure environment

Knowledge and Education

o College diploma or university degree in the field of computer science preferable.

o Minimum of 5 years work related experience in related fields. Work Experience o Strong understanding of network protocols and current operating systems

o General knowledge of scripting and programming

o Experience with: Microsoft Office product suite, SIEM technologies, EDR Tools, Vulnerability Scanning tools