Security Operations Center Analyst
Edfinancial Careers
full-time
Posted on:
Location Type: Hybrid
Location: Knoxville • Tennessee • United States
Visit company websiteExplore more
Tech Stack
About the role
- Monitor security events and alerts from various sources including SIEM (Security Information and Event Management) tools, intrusion detection/prevention systems, antivirus systems, and other security tools.
- Analyze security alerts to identify potential cybersecurity incidents and assess their severity.
- Conduct in-depth investigations into security incidents, including determining the root cause, impact, and extent of the compromise.
- Utilize threat intelligence sources to enhance the detection and analysis of security threats.
- Respond promptly to security incidents, following established procedures and protocols.
- Coordinate with internal teams and external stakeholders to contain and mitigate security incidents.
- Document all incident response activities, including actions taken, findings, and remediation steps.
- Assist in identifying and assessing vulnerabilities within the organization's systems and networks.
- Coordinate with system administrators and other stakeholders to prioritize and remediate vulnerabilities in a timely manner.
- Track and report on the status of vulnerability remediation efforts.
- Proactively search for signs of malicious activity within the organization's environment.
- Develop and execute threat hunting methodologies and techniques to identify advanced threats that may evade traditional security measures.
- Manage and maintain security tools and technologies, ensuring they are properly configured and updated.
- Collaborate with the IT team to deploy, configure, and tune security solutions for maximum effectiveness.
- Generate regular reports on security incidents, trends, and metrics for management review.
- Maintain detailed documentation of security incidents, investigations, and remediation efforts.
- Provide guidance and training to other members of the IT team on security best practices, incident response procedures, and emerging threats.
- Participate in security awareness programs to educate employees about cybersecurity risks and mitigation strategies.
- Stay current with the latest cybersecurity trends, threats, and technologies.
- Recommend and implement enhancements to security monitoring and detection capabilities.
Requirements
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- 2+ years of experience in a security operations role, preferably in a SOC environment.
- Strong understanding of cybersecurity principles, protocols, and best practices.
- Experience with SIEM tools, intrusion detection/prevention systems, and other security technologies.
- Proficiency in incident response methodologies and tools.
- Knowledge of networking concepts and protocols.
- Relevant certifications such as Security+, GIAC, CISSP, or equivalent are a plus.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to work effectively both independently and as part of a team.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
cybersecurity principlesincident response methodologiesthreat hunting methodologiesvulnerability assessmentsecurity monitoringnetworking conceptssecurity analysisroot cause analysisthreat intelligencesecurity incident documentation
Soft Skills
analytical skillsproblem-solving skillscommunication skillsinterpersonal skillsteamworkindependenceguidancetrainingcollaborationorganization
Certifications
Security+GIACCISSPBachelor's degree in Computer ScienceBachelor's degree in Information TechnologyBachelor's degree in Cybersecurity