- Writes procedures for processing and retention of log data
- Support configuration and integration of data feeds into the enterprise Security Information and Event Management (SIEM) solution.
- Monitor network traffic for security events and perform triage analysis to identify security incidents.
- Conducts analysis and digital forensics to identify, monitor, review, assess and counter the threat posed by cyber criminals and bad actors.
- Communicates with IT teams and management to warn of possible risks to data and systems, promote plans to mitigate those risks, write cybersecurity alerts and advisories.
- Utilizes threat intelligence to mitigate potential data threats, protect data, and impede criminals from accessing regulatory and proprietary data.
- Prior experience in leading Security Operations Center (SOC) and SIEM technologies
- Advanced knowledge of the TCP/IP protocol suite, security architecture, and remote access security techniques/products.
- Advanced knowledge of SIEM technologies preferably Microsoft Sentinel
- Experience analyzing both log and packet data to include the use of WireShark, tcpdump and other capture/analysis tools.
- Strong understanding of incident response methodologies and technologies
- Forensic and Malware analysis experience
- Analyzes system data to determine broad issues/trends and to determine root cause of problems and report on status of information security.
- Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for the SOC / SIEM.
- Perform assessment as well as troubleshooting and help isolate issues with IDS/IPS. sensors, Antivirus servers, Vulnerability scanners.
- May also participate in the evaluation and implementation of other new security solutions.
- Develops documentation as necessary to support the overall delivery of SOC / SIEM and threat management objectives. This includes but is not limited to project plans, communications, executive presentations, job aids, training materials, technical reference documentation metrics/measures packages, and Request for Proposal/Offers (RFP/RFO's).
- Develop log and data retention requirements for the SIEM.
- Be part of the RFP committee, coordinate responses to vendor's questions, and perform vendor onboarding and project coordination activities.
- Demonstrate intuitive problem solving and exemplary teamwork skills, work closely with other teams to assess risk, and provide recommendations for improving our security posture.
- Must be able to weigh business needs against security concerns and articulate issues to management and stakeholders.
- May assist in establishing Security Orchestration and Automated Response (SOAR) technologies.
- Other duties as assigned.
- High School diploma, or G.E.D. equivalency from an accredited educational institution.
- Four (3) years of work experience in a relevant role, i.e Senior SOC Analyst, Incident Response, Threat Analyst.
- Prior experience in leading Security Operations Center (SOC) and SIEM technologies
- Advanced knowledge of the TCP/IP protocol suite, security architecture, and remote access security techniques/products.
- Advanced knowledge of SIEM technologies preferably Microsoft Sentinel
- Experience analyzing both log and packet data to include the use of WireShark, tcpdump and other capture/analysis tools.
- Strong understanding of incident response methodologies and technologies
- Forensic and Malware analysis experience
- Comptia Security+, Network+, CySA+ or equivalent certification.
- GCIH, GCIA, GCFE, GREM, GCFA, GSEC, CEH, CISSP, CCNA (Security) or equivalent Certifications.
- Bachelor's degree in Information Systems, Information Security, Information Technology, Computer Science, or similar area of study from an accredited college or university.
- Hands-on experience with SIEM capability and tools like MS Sentinel
- Cyber Threat and Intelligence gathering and analysis.
- Excellent knowledge of Intrusion Detection (deep TCP/IP knowledge, and Cybersecurity), various operating systems (Windows/UNIX), and web technologies (focusing on Internet security)
- Experience with Intrusion detection and prevention and Network Security Products (IDS/IPS, firewalls), Host Security Products (HIPS), Anti-Virus, vulnerability scanners, etc.
- Ability to confront challenges in a constructive fashion and influence others through consensus building
- Strong organizational skills, including the ability to drive adherence to cybersecurity processes and tools and to keep focus on multiple tracks of work and open issues in parallel.
- A passion for cybersecurity, self-starter mentality, flexibility and willingness to take on new challenges and ability to thrive in a team environment.
- Convictions, probation, or deferred adjudication for any Felony, and any Class A Misdemeanor
- Convictions, probation, or deferred adjudication for a Class B Misdemeanor, if within the previous 10 years
- Open arrest for any criminal offense (Felony or Misdemeanor)
- Family Violence conviction
- 10 years 8 yearsSchedule:
- Monday to Friday
- SOC and
-
SOC Analyst
3 weeks ago
Nouryon Houston, United StatesWe are looking for team members who bring ideas forward, champion others and work together to do better. Does that sound like you? · SOC Analyst · About The Job: · Nouryon's Houston, TX location is looking for top candidates to fill the key role of SOC Analyst. This position ...
-
SOC Analyst
4 days ago
Nouryon Houston, United StatesWe are looking for team members who bring ideas forward, champion others and work together to do better. Does that sound like you? · SOC Analyst · About The Job: · Nouryon's Houston, TX location is looking for top candidates to fill the key role of SOC Analyst. This position is e ...
-
SOC Analyst
2 weeks ago
Diverse Lynx Houston, United StatesJob Title-Lead Azure /Customer Net Developer · Job Location- Richmond, VA · Job Duration- 1 Year · Complete Description: · *Local Richmond, VA candidates required due to onsite requirement · *candidates must be able to work onsite 1 -2 days/week or as needed · *initial webcam in ...
-
Senior SOC Analyst
4 weeks ago
Binary Defense Houston, United StatesJob Type · Full-time · Description · Binary Defense (BD) is seeking a talented Senior SOC Analyst. Responsibilities will include, but not be limited to security alert monitoring and tuning, incident response, content creation, and identifying and filling capability and maturity ...
-
SOC Analyst I
2 weeks ago
TechOnPurpose Houston, United StatesJob Description · Job DescriptionSalary: · Position: SOC Analyst I · Location: Houston, TX or ANY · Available: Immediately · Description: · As a motivated and experienced Security Operations Consultant, you will help our clients build, monitor & maintain an effective security o ...
-
Tier 2 SOC Analyst
3 weeks ago
Binary Defense Houston, United StatesJob Type · Full-time · Description · Binary Defense (BD) is seeking a talented · Tier 2 SOC Analyst . Responsibilities will include, but not be limited to network security analysis, monitoring and incident response. · SOC Analysts work with and learn from experienced securit ...
-
Paralegal
3 weeks ago
Everflow Technologies Houston, United States**The Opportunity** · Are you a detail-oriented individual with a passion for contracts, compliance, and data security interested in the dynamic world of adtech/SaaS? Everflow Technologies is seeking a Paralegal to join our team. In this role, you'll directly support our Complian ...
-
Intelligence Support Coordinator
1 week ago
Entergy Corporation The Woodlands, United States**Work Place Flexibility**: Hybrid · **Legal Entity**: Entergy Services, LLC · **_ *This is a hybrid role that may be filled in New Orleans, LA; The Woodlands, TX; Little Rock, AR; Jackson, MS; or Washington, D.C.*_** · **Job Summary/Purpose** · The Intelligence Support Coordinat ...
-
Information Security Analyst Ii or Iii
1 week ago
Entergy Corporation The Woodlands, United States**Posting End Date**: · **Work Place Flexibility**: Hybrid · **Legal Entity**: Entergy Services, LLC · **_ **Preferred location for this role is The Woodlands, TX or Little Rock, AR; however New Orleans, LA and Jackson, MS will also be considered.**_** · **Job Summary/Purpose**: ...
-
The Emery Company, LLC Houston, United StatesMUST BE LOCAL TO HOUSTON AND NO H1B OR C2C · Information Security Operations Center Analyst (Cybersecurity SOC/SIEM) · Position Overview · The Enterprise Information Cybersecurity Analyst executes threat intelligence reports, threat, vulnerability, and incident management process ...
-
Senior Security Analyst
2 weeks ago
Clearpoint Houston, United StatesTITLE: Senior Security Analyst · LOCATION: Northwest Houston · TYPE: Permanent · Senior Security (SOC) Analyst · Position Type: Full-Time · Please note that this role is an In Office position with an expectation to be onsite four days a week. · About the role: · The secur ...
-
The Emery Company, LLC Houston, United StatesMUST BE LOCAL TO HOUSTON AND NO H1B OR C2C · Information Security Operations Center Analyst (Cybersecurity SOC/SIEM) · Position Overview · The Enterprise Information Cybersecurity Analyst executes threat intelligence reports, threat, vulnerability, and incident management proc ...
-
Security Operation Center Analyst
2 weeks ago
Alvarez & Marsal Houston, United StatesDescription · A high number of candidates may make applications for this position, so make sure to send your CV and application through as soon as possible. · Security Operation Center Analyst · Companies, investors and government entities around the world turn to Alvarez & Ma ...
-
Triage Analyst
4 days ago
MartinFederal Consulting LLC Houston, United StatesCOMPANY OVERVIEW · Founded in 2007 in Huntsville, AL, MartinFed provides the U.S. government with customer-focused, performance-based solutions using technology and an empowered workforce as an engine to drive its customers' missions. Our goal is to attract the best and brightest ...
-
Security Operation Center Analyst
2 weeks ago
Motion Recruitment Houston, United StatesA Security Operations Center (SOC) Analyst plays a crucial role at the Cybersecurity company that we are working with. Efforts to protect its systems, networks, and data from cyber threats. You will be responsible for monitoring, detecting, and responding to security incidents an ...
-
Senior Cyber Security Lead
4 weeks ago
Insight Global Houston, United StatesMust Haves:* Bachelor's degree in computer science or related field.* 5+ years of progressive experience working in information technology, security, or risk management* Experience building a SOC environment, enabling and implementing any type of CSF (Cybersecurity Framework) - p ...
-
Senior Cyber Security Lead
2 weeks ago
Insight Global Houston, United StatesMust Haves: · * Bachelor's degree in computer science or related field. · * 5+ years of progressive experience working in information technology, security, or risk management · * Experience building a SOC environment, enabling and implementing any type of CSF (Cybersecurity Frame ...
-
Security Operation Center Analyst
1 week ago
Motion Recruitment Houston, United StatesA Security Operations Center (SOC) Analyst plays a crucial role at the Cybersecurity company that we are working with. Efforts to protect its systems, networks, and data from cyber threats. You will be responsible for monitoring, detecting, and responding to security incidents an ...
-
Hawaii Health Systems Corporation Houston, United StatesDATE POSTED: · 03/27/2024 · POSITION TITLE: · Corporate IT Security Operations Center Manager · RECRUITMENT NO: · HHSC 02-24 · POSITION STATUS: · Exempt/Full-Time with Benefits · LOCATION: · Hawaii Health Systems Corporation (HHSC), Corporate, Honolulu, HI · SALARY RANG ...
-
CSOC Analyst
1 week ago
Comtec Information Systems Houston, United StatesTitle: Senior CSOC Analyst · Location: Little Rock, AR or Houston, TX (Hybrid) · Length : Fulltime · The Cyber Security Operations Center Analyst is a level 3 position, will be responsible for investigating and responding to security incidents, understanding, and mitigating attac ...
SOC Analyst - Houston, United States - The Emery Company
Description
*Hybrid position. No H1B or C2C*W2 contract only
Advanced knowledge of SIEM technologies preferably Microsoft Sentinel
*Information Security Analyst - SOC/SIEM Threat Management
Under minimal direction, the SOC (Security Operations Center) / Security information and event management (SIEM) Analyst collaborates to develop innovative and effective procedures for the SOC to enhance coordination and incident response operations.
Additionally, the SOC / SIEM Analyst will lead configuration and deployment of our SIEM tool, monitor network traffic for security events, and perform triage analysis to identify security incidents.
The SOC / SIEM Analyst will respond to computer security incidents by collecting, analyzing, preserving digital evidence, and ensuring that incidents are recorded and tracked in accordance with SOC requirements.
Additionally, the SOC / SIEM Analyst candidate must demonstrate intuitive problem solving and exemplary teamwork skills, work closely with other teams to assess risk, and provide recommendations for improving our security posture.
*Projects & Requirements:*Education:
Preferences:
Pay:
From $80.00 per hour
Experience level:
Experience:
SIEM:
6 years (Required)
Microsoft Sentinel: 2 years (Required)
Cybersecurity Analyst: 7 years (Required)
Work Location:
In person
#J-18808-Ljbffr