Security Operations Center Analyst
Edfinancial Careers
full-time
Posted on:
Location Type: Hybrid
Location: Knoxville • Tennessee • 🇺🇸 United States
Visit company websiteJob Level
JuniorMid-Level
Tech Stack
Cyber Security
About the role
- Monitor security events and alerts from various sources including SIEM (Security Information and Event Management) tools, intrusion detection/prevention systems, antivirus systems, and other security tools.
- Analyze security alerts to identify potential cybersecurity incidents and assess their severity.
- Conduct in-depth investigations into security incidents, including determining the root cause, impact, and extent of the compromise.
- Utilize threat intelligence sources to enhance the detection and analysis of security threats.
- Respond promptly to security incidents, following established procedures and protocols.
- Coordinate with internal teams and external stakeholders to contain and mitigate security incidents.
- Document all incident response activities, including actions taken, findings, and remediation steps.
- Assist in identifying and assessing vulnerabilities within the organization's systems and networks.
- Coordinate with system administrators and other stakeholders to prioritize and remediate vulnerabilities in a timely manner.
- Track and report on the status of vulnerability remediation efforts.
- Proactively search for signs of malicious activity within the organization's environment.
- Develop and execute threat hunting methodologies and techniques to identify advanced threats that may evade traditional security measures.
- Manage and maintain security tools and technologies, ensuring they are properly configured and updated.
- Collaborate with the IT team to deploy, configure, and tune security solutions for maximum effectiveness.
- Generate regular reports on security incidents, trends, and metrics for management review.
- Maintain detailed documentation of security incidents, investigations, and remediation efforts.
- Provide guidance and training to other members of the IT team on security best practices, incident response procedures, and emerging threats.
- Participate in security awareness programs to educate employees about cybersecurity risks and mitigation strategies.
- Stay current with the latest cybersecurity trends, threats, and technologies.
- Recommend and implement enhancements to security monitoring and detection capabilities.
Requirements
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- 2+ years of experience in a security operations role, preferably in a SOC environment.
- Strong understanding of cybersecurity principles, protocols, and best practices.
- Experience with SIEM tools, intrusion detection/prevention systems, and other security technologies.
- Proficiency in incident response methodologies and tools.
- Knowledge of networking concepts and protocols.
- Relevant certifications such as Security+, GIAC, CISSP, or equivalent are a plus.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to work effectively both independently and as part of a team.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cybersecurity principlesincident response methodologiesthreat hunting methodologiesvulnerability assessmentsecurity monitoringnetworking conceptssecurity analysisroot cause analysisthreat intelligencesecurity incident documentation
Soft skills
analytical skillsproblem-solving skillscommunication skillsinterpersonal skillsteamworkindependenceguidancetrainingcollaborationorganization
Certifications
Security+GIACCISSPBachelor's degree in Computer ScienceBachelor's degree in Information TechnologyBachelor's degree in Cybersecurity