Job Description

Title: Cyber SOC Operation Analyst

Location: Charlotte, NC (Hybrid)

Type: Contract

Must have: SIEM, SOAR, SPLUNK, SOC Operations experience.

Job Summary:

• Cyber SOC Operation Analyst is responsible for monitoring, detecting, analyzing, and responding to security incidents within the organization's network.
• This role involves working with various security tools and technologies to ensure the protection of the organization's information assets. The analyst will collaborate with other IT and security teams to mitigate threats and enhance the overall security posture.

Key Responsibilities:

• Monitor security alerts and events from various sources, including SIEM systems, IDS/IPS, firewalls, and other security tools.
• Analyze security incidents to determine their impact and severity.
• Conduct initial triage and investigation of security incidents.
• Respond to security incidents, including containment, eradication, and recovery.
• Document and report on security incidents, including root cause analysis and lessons learned.
• Coordinate with other teams to ensure timely resolution of security incidents.
• Stay updated on the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Integrate threat intelligence into monitoring and response processes.
• Provide recommendations for improving security controls based on threat intelligence.
• Maintain and optimize security tools and technologies used in the SOC.
• Assist in the deployment and configuration of new security tools.
• Perform regular health checks and maintenance of security systems.
• Ensure compliance with relevant security policies, standards, and regulations.
• Generate and present regular reports on security incidents, trends, and metrics.
• Participate in security audits and assessments.
• Work closely with other IT and security teams to enhance the organization's security posture.
• Communicate effectively with stakeholders regarding security incidents and risks.
• Provide training and guidance to junior SOC analysts and other team members.

Qualifications:

• Education: Bachelor's degree in Computer Science, Information Security, or a related field.
• Experience: 4 years of experience in a SOC or similar security role.

Technical Skills:

• Proficiency with SIEM tools (e.g., Splunk, Tines).
• Experience with incident response and forensic analysis.

Soft Skills:

• Strong analytical and problem-solving skills.
• Excellent communication and teamwork abilities.Ability to work under pressure and manage multiple priorities.

Working Conditions:

• This role may require shift work to ensure 24/7 coverage of the SOC.

Job Tags

Similar Jobs