Security Operations

• Provide comprehensive Security Monitoring and Incident Response support through 24×7×365 monitoring and analysis of potential threat activity targeting the enterprise
• Conduct event triage and security investigations for potential threat activity identified within the organization
• Conduct deep-dive forensic investigations (host-based and network)
• Identify and implement countermeasures and mitigating controls for deployment in the enterprise network environment
• Develop advanced analytics, rules, filters, views, signatures, and operationally relevant scripts and applications to support detection and analysis efforts
• Track and report on incident activity to senior management and produce clear and thorough security incident reports and briefings
• Use SIEM/log management systems (preferably IBM QRadar or Splunk), intrusion detection systems, endpoint threat detection tools, and security operations ticket management
• Lead or support Incident Handling (Detection, Analysis, Triage), Hunting (anomalous pattern detection and content management), and Malware Analysis efforts
• Support coverage requirements across multiple shifts, including 12-hour shifts and potential night/weekend work as required

SOC Analyst

Security Operations Center Officer

SecOps Engineer – Identity, IAM Authentication

IT and Security Operations Specialist

SOC Analyst

SOC Analyst I