Tier 2 SOC Analyst - Ogden, United States - HireFit

Description

Job Title: Tier 2 Security Operations Center (SOC) Analyst

Location: Ogden, Utah

Company Overview: Our client has been a trailblazer in cybersecurity and risk management since 2017. Their proprietary platform is more than technology; it's a steadfast commitment to safeguarding industries like Healthcare, Energy, Oil & Gas, Retail, and Travel & Hospitality. In an era dominated by digital threats, we prioritize your peace of mind, blending cutting-edge tech with robust defenses to ensure holistic protection for your business.

Position Overview: As a Tier 2 Security Operations Center (SOC) Analyst, you'll be instrumental in monitoring, analyzing, and responding to security incidents, safeguarding our clients' infrastructure and data assets. Collaborating closely with Tier 1 analysts and cybersecurity experts, you'll investigate and mitigate security threats while offering expert guidance to our diverse clientele.

Key Responsibilities:

1. Incident Detection and Analysis: Monitor security events and alerts using various tools, investigating potential incidents to understand their nature, scope, and impact, and serving as the primary escalation point for Tier 1.
2. Incident Response: Implement predefined procedures to contain and mitigate security breaches, coordinating with stakeholders to ensure prompt incident resolution and minimal downtime.
3. Threat Hunting: Proactively search for advanced threats within the network environment, leveraging threat intelligence and advanced analytics to identify and neutralize potential risks and assisting in threat signature implementation and tuning.
4. Detection Engineering: Develop and maintain detection rules and algorithms across various data sources to identify anomalous behavior and threats, continually researching emerging threats and security technologies to enhance detection capabilities.
5. Security Tool Management: Oversee and optimize security technologies like SIEM, IDS/IPS, and endpoint security solutions, fine-tuning configurations to maximize detection capabilities.
6. Documentation and Reporting: Document incident details, analysis findings, and remediation actions, preparing comprehensive incident reports and providing necessary findings to customers.
7. Collaboration and Knowledge Sharing: Engage with Tier 1 analysts, SOC leadership, and cybersecurity teams to share insights, best practices, and lessons learned, participating in knowledge transfer sessions and training programs.
8. Continuous Improvement: Identify opportunities for process enhancements, automation, and optimization within the SOC environment, contributing to the development of new security policies, procedures, and controls, and participating in continuous training and improvement initiatives.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent work experience).

• 3+ years of experience in cybersecurity operations, preferably in a SOC environment.

• Strong understanding of network protocols, system administration, and cybersecurity principles.
• Proficiency in using security tools such as SIEM, IDS/IPS, and EDR, with hands-on experience in tools like SentinelOne, Crowdstrike, Elastic, Sumo Logic, Proofpoint Enterprise, and Wiz.

• Hands-on experience with incident response techniques and methodologies.

• Hands-on experience using the ELK stack.

• Relevant certifications such as CISSP, GIAC, or equivalent are highly desirable.

• Excellent analytical, problem-solving, and communication skills.

• Ability to thrive under pressure in a fast-paced environment.

Benefits:

Competitive salary package

Health, dental, and vision insurance

Retirement matching up to 4% for 401k

Paid time off and holidays

Professional development opportunities

Dynamic and collaborative work environment

Requirements:

On Call availability

Shift work is required

Lift more than 25 pounds

On premise in Ogden, Utah