- Initial triage of security events using established procedures, tools, and monitoring platforms including, but not limited to:
- Firewalls and network devices
- Servers and workstations
- Web proxies
- Intrusion detection and prevention systems (IDS/IPS)
- Anti-malware systems
- Security Incident and Event Management systems (SIEM)
- Data Loss Prevention systems (DLP)
- Advanced Endpoint Detection and Response systems (EDR)
- External communications from outside entities, users, phone calls, and emails.
- Assist senior members of the SOC with analyzing and responding to potential security incidents
- Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities, malware, and other threats that have the potential to impact our client organizations.
- Document threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs).
- Manage the Security monitoring tools, and set up dashboards and alerts.
- Develop and maintain technical documentation and Standard Operating Procedures (SOP).
- Conduct security research and intelligence gathering on emerging threats and exploits.
- Participate in shift transition calls to ensure all open cases and tasks are properly managed and addressed.
- Periodic reporting of metrics and corresponding analysis for client review and strategic information security program adjustments and planning.
- Maintenance and management of various security technology platforms.
- Highly motivated to work in information security
- Candidate must be a US citizen / permanent resident.
- Customer-oriented & professional.
- Strong verbal and written communication skills, fluent in English.
- Ability to understand and correlate data from multiple sources, not limited to user authentication events, windows security event logs, Syslog, NetFlow/PCAP data, DHCP logs, DNS logs, intrusion detection alerts, proxy logs, packet captures, and firewall events.
- Knowledge of various security methodologies and processes, and technical security solutions a plus.
- Understanding how both Windows, Linux, and network platforms are compromised is a plus.
- Experience as a Security/Network Administrator or equivalent knowledge. Previous Security Operations Center (SOC) experience is a plus.
- Experience with Security Information and Event Management (SIEM) tools is a plus.
- Regular expression creation experience to support dynamic security event analysis.
- Solid understanding of IP networking fundamentals, including IPv4, TCP/IP, LAN/WAN design theory, static and dynamic routing protocols, NAT, ACLs, etc.
- Solid Understanding of TCP/IP, the OSI Model, and underlying Protocols.
- Scripting language skills in Python or PowerShell are a plus.
- Understanding of cyber forensics concepts including malware, hunt, etc. a plus.
- Understanding how to interpret vulnerability and penetration scan results is a plus.
- Configuration and knowledge of design and implementation concepts of firewall, VPN, IPS, vulnerability management platforms, and other security technologies is desirable
- Bachelor's degree in Information Technology or equivalent experience preferred; background will be considered instead of formal education.
- Competency with Microsoft Operating Systems, including server and workstation and AD engineering and administration capabilities, is desirable
- Basic knowledge of Linux operating systems (command line and GUI) is a plus
- Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies
-
Security Analyst in SOC
3 days ago
Horizon Technologies Kensington Park, United StatesThis is the work environment: · Are you an expert in Cyber Security? We are looking for a SOC Analyst (m/f/d) for our Security Operations Center team in the greater Nuremberg area. · You will join a young, agile, and dynamic team that is dedicated to the topic of IT security. · T ...
-
SOC Governance Analyst
2 weeks ago
Spectraforce Technologies Chicago, United StatesRole: SOC Governance Analyst · Duration: 6+ Months (possible extension) · Work Location: Tempe, AZ or Chicago, IL · The SOC Governance team is a small but highly performing team at the client, responsible for the governance around the suite of our SOC reports. The team does not ...
-
Jr. SOC Analyst
5 days ago
RKON inc Chicago, United StatesRKON Security Operations Center - Security Analyst Job Description · Role and Responsibilities · About us: · RKONis an ISO27001 and AICPA SOC 2 Type II certified company that specializes in providing IT migration and transformation services for the Mergers and Acquisitions mark ...
-
SOC Governance Analyst
3 weeks ago
SPECTRAFORCE Chicago, United StatesRole: SOC Governance Analyst · Duration: 6+ Months (possible extension) · Work Location: Tempe, AZ or Chicago, IL · The SOC Governance team is a small but highly performing team at the client, responsible for the governance around the suite of our SOC reports. The team does not p ...
-
Jr. SOC Analyst
2 weeks ago
RKON Chicago, United StatesJob Description · Job DescriptionRKON Security Operations Center - Security Analyst Job DescriptionRole and Responsibilities · About us: RKON is an ISO27001 and AICPA SOC 2 Type II certified company that specializes in providing IT migration and transformation services for the Me ...
-
Jr. SOC Analyst
3 weeks ago
RKON Chicago, United States Full timeRKON Security Operations Center - Security Analyst Job DescriptionRole and Responsibilities · About us: RKON is an ISO27001 and AICPA SOC 2 Type II certified company that specializes in providing IT migration and transformation services for the Mergers and Acquisitions market. RK ...
-
SOC Analyst with Security Clearance
3 weeks ago
TEKsystems c/o Allegis Group Chicago, United States· • We are looking for applicants with experience around Splunk, SIEM tools, Wireshark and hunting for malicious activity. · • This role also operates on a 4x10 schedule, working either Wednesday–Saturday or Sunday–Wednesday. · • Training will happen on swing shift (1:30pm CST ...
-
Cybersecurity Analyst
2 weeks ago
University of Illinois Chicago, United States**Cybersecurity Analyst - Technology Solutions** · **Hiring Department**: Technology Solutions · **Location**: Chicago, IL USA · **Requisition ID**: · **Posting Close Date**: 4/22/2024 · **About the University of Illinois Chicago** · UIC is among the nation's preeminent urban pu ...
-
Security Analyst
3 weeks ago
Glow Networks Naperville, United States**Position**:Security Analysts (SOC) - Naperville IL** · **Work Location**: Naperville,IL-USA,60440 · **Skill Sets and Requirements**: · **Duration: 12 Months** · **Description**: · **MUST be US citizen** · **Must have prior Operational Security Incident and Event Management with ...
-
Security Operations Center
2 weeks ago
Sublime Wireless Inc Naperville, United States**Title**: SOC Analyst · **Location**: Naperville, IL (Hybrid) · **Contract Length**: 12 months · **Must Have**: · - Must have prior Operational Security Incident and Event Management with Telecom networks. · - At least 1-year Security experience for L1 / 3+ years Security experi ...
-
Information Security Officer
4 weeks ago
Harrington Starr Chicago, United StatesThreat Intelligence Analyst required by Harrington Starr's global financial services business. This superb greenfield role will give the successful candidate the opportunity to grow this function in the APAC region. This is technical Threat Intelligence role (as opposed to purely ...
-
Senior Account Executive with SIEM
3 weeks ago
Anomali Chicago, United StatesThis job was posted by : For more information, please see: Company Description: · Anomali, a world-renowned platform leader in Security Operations, supercharges SecOps by fusing Lightspeed Security Analytics, Industry-Leading Cyberthreat Intelligence (CTI), AI-based automated t ...
-
Security Analyst
2 weeks ago
The LaSalle Group Chicago, United StatesLaSalle Network has partnered with a client to hire a Security Analyst. This is an operational, SOC Analyst, that's going to be working alongside Cybersecurity Engineers and various groups within the IT Department (mainly on the infrastructure side - primarily networking). · Sec ...
-
Principal Data Engineer
2 weeks ago
Blue Health Intelligence Chicago, United StatesAbout Us: · BHI is a data and analytics company and helping health plans, researchers, healthcare providers, employers, and government agencies use data to improve the health outcomes, promote value-based care, and address health equity and increase the value of care provided. We ...
-
Cloud Ops Engineer
3 weeks ago
Blue Health Intelligence Chicago, United StatesAbout BHI: · BHI is a data and analytics company and helping health plans, researchers, healthcare providers, employers, and government agencies use data to improve the health outcomes, promote value-based care, and address health equity and increase the value of care provided. W ...
-
Cloud Ops Engineer
2 weeks ago
Blue Health Intelligence Chicago, United StatesAbout BHI: · BHI is a data and analytics company and helping health plans, researchers, healthcare providers, employers, and government agencies use data to improve the health outcomes, promote value-based care, and address health equity and increase the value of care provided. W ...
-
Senior Cyber Security Analyst
3 days ago
Redwood Logistics Chicago, United StatesSenior Cyber Security Analyst · Reports To: · SOC Manager · Location: · Anywhere in the U.S. · Environment: · Remote - must be willing to travel to Chicago quarterly or monthly · Work Schedule: · This position is full-time and remote Monday through Friday from 8:00 AM to ...
-
Principal Data Engineer
2 weeks ago
Blue Health Intelligence Chicago, United StatesAbout Us: · BHI is a data and analytics company and helping health plans, researchers, healthcare providers, employers, and government agencies use data to improve the health outcomes, promote value-based care, and address health equity and increase the value of care provided. We ...
-
Security Analyst
5 days ago
RIT Solutions, Inc. Chicago, United StatesSecurity Analyst · Location: Onsite 1260 PACIFIC AVE Erlanger, KY (local only) · Interview Mode: Virtual Interview · Type: Contract · Description: · 8-5 Est · The Information Technology Analyst is a member of the Security Engineering team and be responsible for ensuring t ...
-
Senior Security Analyst 11 Locations
3 weeks ago
Tokio Marine HCC Chicago, United States RegularDescription · Position at Tokio Marine HCC Senior Security (SOC) Analyst · Position Type: Full-Time Please note that this role is an In Office position with an expectation to be onsite four days a week. Tokio Marine HCC, a global power in the specialty insurance industry, is ...
SOC Analyst I - Chicago, United States - Patterned Learning AI
Description
Job Description
SOC Analyst I- Remote Job, 1+ Year Experience
Annual Income: $60K - $65K, Onsite
A valid work permit is necessary in the US/Canada
About us: Patterned Learning is a platform that aims to help developers code faster and more efficiently. It offers features such as collaborative coding, real-time multiplayer editing, and the ability to build, test, and deploy directly from the browser. The platform also provides tightly integrated code generation, editing, and output capabilities.
Responsibilities
The SOC Analyst (Level 1) is responsible for:
Patterned Learning can provide intelligent suggestions, automate repetitive tasks, and assist developers in writing code more effectively. This can help reduce coding errors, improve productivity, and accelerate the development process.
The pattern recognition is particularly relevant in the context of coding. Neural networks, especially deep learning models, are commonly employed for pattern detection and classification tasks.
These models simulate human decision-making and can identify patterns in data, making them well-suited for tasks like code analysis and generation.