As a SOC Level 2 Analyst, you will play a crucial role in monitoring, analyzing, and responding to security incidents and threats within our organization\'s environment. You will work closely with SOC Level 1 analysts, as well as other cybersecurity professionals, to ensure the integrity, confidentiality, and availability of our systems and data. Responsibilities Security Monitoring and Analysis: Monitor security event alerts generated by various security systems, including QRadar, Palo Alto, Splunk, CrowdStrike, SentinelOne, SIEM, IDS/IPS, and endpoint detection platforms. Analyze security events to identify potential security incidents or anomalies that may pose a risk to the organization. Incident Triage and Investigation: Triage incoming security alerts based on their severity and potential impact on the organization. Conduct preliminary investigations to determine the nature and scope of security incidents. Gather and analyze evidence, including logs, network traffic, and system artifacts, to identify indicators of compromise (IOCs). Incident Response and Mitigation: Assist in the containment, eradication, and recovery phases of security incidents. Follow established incident response procedures and workflows to ensure timely and effective response to security threats. Collaborate with other members of the SOC team and relevant stakeholders to coordinate incident response efforts. Threat Intelligence Analysis: Stay informed about the latest cyber threats, vulnerabilities, and attack techniques by analyzing threat intelligence feeds and reports. Use threat intelligence to enhance the organization\'s detection capabilities and proactively identify emerging threats. Documentation and Reporting: Maintain accurate and detailed records of security incidents, including timelines of events, actions taken, and findings. Prepare incident reports and post-mortems to document the outcomes of security incidents and lessons learned. Ensure that all documentation complies with internal policies and regulatory requirements. Continuous Improvement: Participate in ongoing training and professional development activities to enhance knowledge and skills in cybersecurity. Provide feedback and suggestions for improving SOC processes, procedures, and tools. Stay abreast of industry best practices and emerging technologies in cybersecurity. Qualifications Bachelors degree in Computer Science, Information Security, or a related field (or equivalent experience). 5+ years of experience in a cybersecurity role, preferably in a SOC environment. Strong understanding of cybersecurity principles, concepts, and technologies. Experience with security monitoring tools such as QRadar, Palo Alto, Splunk, CrowdStrike, SentinelOne, SIEM, IDS/IPS, and endpoint detection platforms. Familiarity with incident response procedures and frameworks (e.g., NIST, SANS). Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Relevant certifications (e.g., CompTIA Security+, GIAC Security Essentials) are a plus. #J-18808-Ljbffr TESTQ Technologies Limited
IT Support Specialist Enterprise EnvironmentWe are looking for a skilled and proactive IT Support Specialist to join our growing technology team. This role is ideal for someone who thrives in a fast-paced enterprise environment and is passionate about delivering excellent...
In most jobs, everyone doesnt spontaneously erupt into applause and start raining down high-fives. At Buffalo Wild Wings, thats just a Thursday night. This is the place to start the next phase of your career. Whether you grow in our system here or your game-plan takes ...
Overview Join to apply for the Senior Manager Product Marketing & ABM role at VerizonWhen you join Verizon, you will be part of a culture that values ideas, growth, and impact. Our V Team is a community that listens, learns, and collaborates to lift communities and drive...
...experience in Operations, Account, and Customer Support, with proficiency in Excel Experience with data analysis leveraging SQL. ~ Zendesk ticketing system experience ~ Experience in the media industry. ~ Strong written and verbal communication skills. ~...
...Job Description Job Description Job Opening: Unarmed Security OfficerBullock Protection LLC Bullock Protection LLC, a leader in private security services, is excited to announce an opening for a full-time Unarmed Security Officer position. This role is essential in...