SOC Analyst

Remote Full-time
Job Title: SOC Analyst Location: Ashburn, VA (Remote) Experience: 2+ Entry Level Work Authorization: USC, GC and EAD Job Details: Supporting the Cyber Defense Operations Center (CDOC) team, provide event triage, response, and log analysis, including: • Triage events and alerts to determine if an incident has occurred including locating owners of assets, validating if an event was a true positive, and escalating incidents as necessary to the Incident Response team (CSIRT) • Perform rapid response and triage of security reports from Cybercrime and other teams, appropriately investigating, containing, escalate based on the determination, and ticket closure • Perform thorough analysis on email phishing reports and threats. Ensure appropriate containment & eradication is performed based on the threat perceived & documented guidance • Facilitate communication and collaborate with internal teams, management, and external stakeholders to provide timely updates on incident progress • Perform basic forensic examinations on hosts and support CSIRT on response tasks when engaged • Create recommendations and requirements for content detection and response 2 Demonstrate solid understanding & experience with security controls/tooling used by CDOC, including: • Splunk and Elasticsearch (SIEM/Logging) • Splunk SOAR (Case Management) • Endpoint Security: Microsoft Defender for Endpoint, CrowdStrike, Wazuh, & Tanium • Network Security: Netskope SWG and CASB, Palo Alto IPS, CloudFlare WAF, Extrahop, & NetWitness • IAM: Azure AD • Intermediate knowledge of Public Cloud environments to support AWS & GCP threat response 3 Strong understanding of networking & a variety of IT systems, apps, & their operational configurations 4 Knowledge of Threat Actor tactics, techniques, and procedures (TTPs), log analysis, network traffic analysis, and analyzing system artifacts (file system, memory, running processes, network connections) for indicators of infection/compromise 5 Strong oral & written communication abilities to engage with internal stakeholders within & outside of InfoSec 6 Roles will support 8-hour work shifts (during the day) 7 Roles may require overtime, on-call, & weekend coverage (shift rotation) from time-to-time Apply tot his job
Apply Now

Similar Opportunities

UT Dallas Data Analyst Entry Level Opportunity

Remote

Entry Level Sales Reps Part Time

Remote

Entry Level Cyber Security Role

Remote

CMMC Cyber Security Consultant W2 role fully remote

Remote

Entry-Level Data Analysis Coordinator (Remote)

Remote

Entry Level Data Scientist/Analyst(Remote)

Remote

Entry Level Data Entry Clerk / Remote Analyst – Analytics Expert for blithequark’s Merchandise Planning Team

Remote

Sourcing Analyst (Entry level Data Analyst)

Remote

Jr Product Analyst (Entry Level -Mortgage Product Team)

Remote

**Experienced Entry-Level Remote Data Analyst – Data-Driven Insights for Business Growth**

Remote

**Experienced Customer Service Representative – Delivering Exceptional Support in a Fully Remote Environment**

Remote

Experienced Apple At-Home Advisor - Remote Part-Time Customer Support & Technical Expert

Remote

Area Intake Coordinator - Clinical - Weekend/Floater (Remote in Iowa)

Remote

**Experienced Customer Support Representative – Online Remote Jobs at arenaflex**

Remote

**Remote WFH Full Time Data Entry - Typing - Part Time Entry Level Position at arenaflex**

Remote

**Experienced Customer Service Representative – Work From Home Opportunities at blithequark**

Remote

Experienced Remote Customer Service Representative – Delivering Exceptional Support in a Dynamic and Customer-Centric Environment

Remote

Account Executive – Website & Marketing Solutions (Remote) – New York, NY

Remote

WA Telemedicine Physician Part-Time Washington

Remote

Experienced Remote Customer Service Representative – Delivering Exceptional Client Experiences through Phone, Chat, and Email Support

Remote
← Back to Home