Job Description
Description:
We are seeking a detail-oriented and proactive Security Operations Center (SOC) Analyst to join our team. The SOC Analyst will play a critical role in monitoring, analyzing, and responding to security incidents. This position involves collaboration with Incident Response teams, conducting research, managing tool access, and leveraging industry-leading security tools to protect and enhance the organization's cybersecurity posture.
Monitor and manage SOC Team Inbox alerts, ensuring effective communication with the SOC Incident Response Team for tracking and reporting purposes.
Collaborate with SOC Incident Response Team members to analyze, compile, and submit daily IP blocklists for peer review and remediation.
Conduct in-depth research and analysis of Splunk Enterprise Security (ES) notables, identifying tuning opportunities or escalation needs in coordination with Senior SOC Incident Response Analysts.
Design and implement a new Tool Access Manager in collaboration with the SOC Incident Response Team Lead, ensuring accurate tracking of software status and employee access.
Analyze and document critical vulnerabilities identified in Tenable plugins across unique hosts, providing detailed reports to the Information System Security Officer (ISSO) as required.
Compile and upload daily IP addresses from the blocklist to Splunk Cloud's Block List Lookups, enabling effective tracking of IP blocklist traffic.
Execute OCIO Vulnerability Management Notification and Response procedures, including generating RSA Archer tickets based on Tenable scan results for plugins.
Conduct research and analysis of Mandiant MD5 hashes within the Tanium console to detect potential malicious activity, communicating findings to Senior Incident Response Analysts.
Proactively monitor internal DNS traffic, identifying and escalating potential signs of malicious activity to Senior Analysts for further investigation.
Requirements:Requirements:
Proven experience in a SOC or similar cybersecurity role.
Proficiency in Splunk, Tenable, Tanium, and Service now.
Strong analytical and problem-solving skills with the ability to interpret and act on security data.
Effective communication and collaboration skills to work with diverse teams.
Familiarity with vulnerability management and incident response processes.
Ability to conduct in-depth research and provide thorough documentation
0-2 years
Bachelor’s Degree in Librarian Science, Information Technology, or related field
...Senior Controls Engineer (HVAC Building Automation) at St. Jude Children's Research Hospital summary: The Senior Controls Engineer... ...Understanding of heat transfer, fluid flow and the application of mechanical devices used for delivery of ventilation, steam, chilled water...
...Description TekPro is partnered with a longstanding manufacturer in Chicagoland in their search for an Environmental Health and Safety Manager! Please apply to now to be considered. Title: EHS manager Department: Manufacturing Reports to: Manufacturing...
...Job Description Please share the Android/IOS Developer consultants resume with location. We are looking for a consultant near Sunnyvale... ...Android applications with clean and efficient code. Integrate apps with RESTful APIs to connect with back-end services....
...Job Description Stability Healthcare is seeking a travel Cath Lab Technologist for a travel job in Leesburg, Virginia. Job... ...Type: Travel Stability Healthcare is looking for a Cath Lab Technician Allied contract position in Leesburg, VA. A catheterization...
...Description We are seeking a reliable Delivery Driver to join our team. The Delivery Driver will... ...to move items up to 150lbs with equipment - Must be able to pass criminal background, drug screen and to obtain a DOT Medical Exam Certificate - Commercial driving...