Remote SOC Mid-Level Analyst Job at ECS, Remote

dGNjYjFyQkZpR1N1ZkdqS3hHMHQ1TVFDdXc9PQ==
  • ECS
  • Remote

Job Description

ECS is seeking a  SOC Mid-Level Analyst  to work  remotely .

ECS is seeking a Mid-Level SOC Analyst with demonstrated experience supporting the development of processes, procedures, and automations to rapidly ingest, aggregate, correlate, normalize, and analyze event messages to rapidly and assuredly identify and respond to Indicators of Compromise (IoC). The ideal candidate is a critical thinker and perpetual learner who is excited to solve some of our clients’ toughest challenges. To be successful the candidate must have experience working in a mature 24x7x365 Security Operation Center.

Shift schedule:  Fri-Mon, 3:00PM – 1:00AM ET (subject to change)

Responsibilities include:

  • Continuously monitors SIEM and on-premises infrastructure/cloud applications for security events to threats & intrusions, including:
  • SIEM alert queue
  • Phishing email inbox
  • Intel feeds via email and other sources (i.e., US-CERT, MS-ISAC)
  • Incident ticketing queue
  • Participates with responding to and handling all critical incident activity. Ensure the execution of proper containment, remediation, and recovery activities.
  • Assesses and documents lessons learned as part of post-incident review, such as unsuccessful controls, outdated procedures, or incomplete remediation actions.
  • Coordinates with SIEM engineering to tune security events and alerts for improving alert fidelity. 
  • Assists with creating and tuning Security Orchestration and Automation (SOAR) playbooks and automated workflows. 
  • Performs proactive threat hunting to identify and characterize new emerging threats, vulnerabilities, and risks.
  • Works closely with Cyber Threat Intel to provide information on detection patterns for new upcoming threats
  • Compiles threat hunt reports as requested on any specific hunt/threat inquiry and disseminate to SOC leadership.

Conducts research and document events of interest within the scope of Cyber Security.

Salary Range: $120,000 – $145,000

Qualifications
  • Minimum of 3 years experience conducting analysis of log data in support of intrusion analysis or information security operations.
  • Bachelors degree or equivalent with relevant certifications.
  • Experience with two or more analysis tools used in a CIRT or similar investigative environment.
  • Ability to build content in SIEM system.
  • Ability to analyze and triage IoCs.

Jobicy JobID: 134595

Job Tags

Full time, Shift work,

Similar Jobs

PC Construction

Carpenter Helper Job at PC Construction

 ...PC is seeking a Carpenter Helper to work in Portland, Maine. Candidates should be well-rounded, work as part of a team, complete work independently, be highly motivated, and be focused on excellence in all aspects of the work. Responsibilities include rough carpentry,... 

MGP Ingredients

Quality Manager Job at MGP Ingredients

 ...Midwestern U.S., and overseas in Northern Ireland and Mexico. The Opportunity Under the guidance of the Branded Spirits Quality Manager, provides quality control leadership for the plant to ensure product safety and quality of all products produced. The Quality Control... 

Corning

Supervisor, Facilities Maintenance Job at Corning

 ...Requisition Number: 71538 The company built on breakthroughs. Join us. Corning is one of the worlds leading innovators in glass, ceramic, and materials science. From the depths of the ocean to the farthest reaches of space, our technologies... 

DataAnnotation

AI Backend Developer Job at DataAnnotation

 ...completed or in progress) Responsibilities: Develop a variety of problems and solutions for a...  ...seeking skilled programmers to become a part of our team, dedicated to training our AI...  ...week, up to 40 hours. This is a full-time or part-time REMOTE role. You will have... 

Boston Medical Center

Executive Director Finance Hospital Job at Boston Medical Center

 ...POSITION SUMMARY: The Executive Director of Finance serves as the Head of Finance for the Hospital, providing strategic financial...  ...coordination and collaboration with Finance Shared Services and Corporate FP&A, oversees the implementation and development of the...