Locate this job
Looking for a SOC Analyst for a Fortune 500 financial services firm!
The worker's primary duty (50% or more) is the application of systems analysis techniques and procedures, including consulting with users, to determine hardware, software or system functional specifications.
3 main skills: 1. Networking basics 2. Investigation skills 3. Understanding of malware and web attacks
Hours to be worked: Sunday through Tuesday (every other Saturday) 7pm to 7am Wednesday through Friday (every other Saturday) 7pm to 7am The person will start on days M-F 8-5 for training on the tools and processes. Typically this "burn in" period will last for a month. It depends upon the employee's aptitude. They will then straddle the day and night shift for one more month before fully going to nights.
This position will be part of a 24x7 Global Security Operations team, providing infrastructure security monitoring, vulnerability incident management . The successful candidate will be responsible for : :Network and compute platform security monitoring and incident management, through the use of a security event management system, intrusion prevention systems, vulnerability scanning tools and end point security solutions. :Identifying/tracking down compute platform vulnerabilities and ensuring that the appropriate containment and/or remediation are invoked. :Working with other technology, security and business groups as part of the broader security investigations process. Additionally, the successful candidate will support the team and leadership with ongoing 24x7 support process optimization, technical recommendations, documentation and reporting. Required
Proven experience and knowledge within an Infrastructure Security Operations environment including the following: :Security logging event correlation :Compute platform operating systems :Whole disk encryption :Anti-virus protection :Malware investigation tools processes :Packet capture and analysis :Network and compute platform intrusion prevention :Networking fundamentals and troubleshooting :Distributed Denial of Service :Data leakage protection :Internet user application proxies :Trouble ticketing systems :Workflow Management systems :Security metrics reporting Good knowledge about current security industry solutions, best practices, developments and trends. Proven problem solver with ability to provide in-depth analysis of complex problems, manage risk and make quick decisions. Good written and oral communications skills. Good relationship and collaboration skills within a team as well as with external service providers, technology colleagues and business partners. Cisco and SANS Certification, CISSP, CISM accreditation preferred.
Apply on company website