Senior Analyst Cyber Security Operations - (SOC) - (Remote Opportunity)
About the position
Responsibilities
• Manage day-to-day cyber security operations in partnership with MSSP, including incident investigation, containment, and remediation.
• Develop and maintain runbooks for potential incidents, documenting responsibilities of stakeholders.
• Respond to Cyber Security incidents, ensuring identification, mitigation, and remediation of malicious activities.
• Design, implement, and maintain SIEM and threat detection content, including dashboards and detection rules.
• Continuously tune detections to reduce false positives and enhance threat detection capabilities.
• Research and hunt for tactics, techniques, and procedures used by advanced threat groups.
• Develop and implement detection mechanisms and automation workflows using SIEM tools.
• Collaborate with development and operations teams for efficient monitoring and logging of security events.
• Incorporate threat intelligence feeds for enrichment and alerting in the SIEM.
• Advise organizational leaders on actions during security events and potential threats.
• Ensure compliance with regulations and standards such as Data Privacy and PCI-DSS.
• Mentor and develop talent within the team.
Requirements
• Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related field, or equivalent experience.
• 3-5 years of information security experience with a focus on Security Operations and Incident Response.
• 3+ years of experience in a Cyber Security Operations Center (SOC) or Incident Response team.
• Proficiency with SIEM platforms (e.g., Splunk) and security automation tools.
• Experience with security tools such as EDR, IDS/IPS, SWG, and firewalls.
• Cyber Security related certifications (e.g., SANS, CISSP) preferred.
• Technical knowledge of Linux, Windows, or MacOS systems and network infrastructure.
• Experience with log analysis tools and query languages.
• Experience with scripting languages (e.g., Python, PowerShell).
• Familiarity with cyber kill chain, MITRE ATT&CK framework, and threat hunting.
• Experience with ServiceNow or similar ticketing platforms.
Nice-to-haves
• Cyber Security related certifications (e.g., SANS, CISSP, Splunk Power User) are preferred.
Benefits
• Travel Perks and Benefits for both ALG Vacations and Hyatt
• Medical, Dental and Vision Insurance
• Basic Life Insurance
• Short- & Long-Term Disability
• Paid Parental Leave
• Corporate Wellness Program
• Travel Discounts & Deals
• Paid Time Off & Holidays
• 401(k) Plan with Company Match
Apply tot his job
Apply To this Job