| SOC Analyst, Seattle, WA at Seattle, Washington, USA |
| Email: [email protected] |
|
From: vishal, sibitalent [email protected] Reply to: [email protected] Job Title :: SOC Analyst Location :: Seattle, WA(Hybrid) Duration :: 6+ months Experience :: 8+ Years Note:: Need DL/Visa and LinkedIn and must be local Please confirm candidates are ok with varying shift hours: HOURS twocontractorsthatwork3x12hrsshifts=36hrs twocontractorsthatwork4x10hrsshifts=40hrs 1700HRSto0500HRS(Thursday,FridayandSaturday) 0500HRSto1700HRS(Friday,Saturday,Sunday) 0600HRSto1600HRSSaturday,Sunday,Monday,Tuesday 0600HRSto1600HRSWednesday,Thursday,Friday,Saturday Security Analyst About this team The cybersecurity team enables us to conduct its global operations in a secure manner and safeguard the trusted information of its guest and users. This is accomplished by understanding business risk as manifested through cybersecurity and compliance risk, and by maintain a high degree of employee awareness of all security and compliance topics. To further enhance our team, we are looking someone who is passionate about IT Security to join the team A day in the life: The Cyber Security Analyst will help the team to perform Security Operations Center (SOC) duties, which include incident response, malware analysis, and monitoring. This role will work with the team to implement processes and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access. Triages alerts/incidents and performs deep analysis; correlates with threat intelligence tools, tactics and procedures (TTP) in indicators of compromise (IOCs) to identify the threat actor, nature of the attack, and systems or data affected. Prioritizes and triages alerts or issues to determine whether a real security incident is taking place and escalate incidents if necessary. Performs analysis, triage and remediation of low/medium priority alerts. Analyzing logs, network traffic, and other data sources to identify the source of incidents. Record identified vulnerabilities, create remediation tickets and track their status. Build internal scripts, tools, and automation processes to enhance detection and response capabilities. Adjusting security tools and processes, e.g. EDR alerting modifications, updating detection rules conditions, etc. Qualifications: Bachelors in: Computer Science, Information Security, Cybersecurity, or a related degree. 2-4 year experience in one or more areas: Security Operations, Incident Response, Information Security Technology, etc. Strong security concepts of threat categories (such as malware, phishing attacks, Defense-in-Depth, MITRE ATT&CK framework, etc.) Strong knowledge of M365 Security tools, Azure, AWS, GCP Working experiences to security tools such as SIEM (Sentinel, Splunk, Elastic etc.), EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc. Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs. Good knowledge of networking protocols (SMTP, HTTP, HTTPS, FTP, DNS, DHCP, etc). Experiences of any query language and scripting language SharePoint, Excel, JIRA and/or Microsoft Office skills Experience in using security orchestration, automation, and response tools Experience with query languages and scripting languages Experience in using security orchestration, automation, and response tools Must haves: Acknowledges the presence of choice in every moment and takes personal responsibility for their life. Possesses an entrepreneurial spirit and continuously innovates to achieve great results. Communicates with honesty kindness and creates the space for others to do the same. Leads with courage, knowing the possibility of greatness is bigger than the fear of failure. Fosters connection by putting people first and building trusting relationships. Integrates fun and joy as a way of being and working, aka doesnt take themselves too seriously. Keywords: information technology Washington SOC Analyst, Seattle, WA [email protected] |
| [email protected] View All |
| 08:48 PM 05-Mar-25 |