SOC Analyst

Remote Full-time
Job Title: SOC Analyst Location: Ashburn, VA (Remote) Experience: 2+ Entry Level Work Authorization: USC, GC and EAD Job Details: Supporting the Cyber Defense Operations Center (CDOC) team, provide event triage, response, and log analysis, including: • Triage events and alerts to determine if an incident has occurred including locating owners of assets, validating if an event was a true positive, and escalating incidents as necessary to the Incident Response team (CSIRT) • Perform rapid response and triage of security reports from Cybercrime and other teams, appropriately investigating, containing, escalate based on the determination, and ticket closure • Perform thorough analysis on email phishing reports and threats. Ensure appropriate containment & eradication is performed based on the threat perceived & documented guidance • Facilitate communication and collaborate with internal teams, management, and external stakeholders to provide timely updates on incident progress • Perform basic forensic examinations on hosts and support CSIRT on response tasks when engaged • Create recommendations and requirements for content detection and response 2 Demonstrate solid understanding & experience with security controls/tooling used by CDOC, including: • Splunk and Elasticsearch (SIEM/Logging) • Splunk SOAR (Case Management) • Endpoint Security: Microsoft Defender for Endpoint, CrowdStrike, Wazuh, & Tanium • Network Security: Netskope SWG and CASB, Palo Alto IPS, CloudFlare WAF, Extrahop, & NetWitness • IAM: Azure AD • Intermediate knowledge of Public Cloud environments to support AWS & GCP threat response 3 Strong understanding of networking & a variety of IT systems, apps, & their operational configurations 4 Knowledge of Threat Actor tactics, techniques, and procedures (TTPs), log analysis, network traffic analysis, and analyzing system artifacts (file system, memory, running processes, network connections) for indicators of infection/compromise 5 Strong oral & written communication abilities to engage with internal stakeholders within & outside of InfoSec 6 Roles will support 8-hour work shifts (during the day) 7 Roles may require overtime, on-call, & weekend coverage (shift rotation) from time-to-time Apply tot his job
Apply Now

Similar Opportunities

UT Dallas Data Analyst Entry Level Opportunity

Remote

Entry Level Sales Reps Part Time

Remote

Entry Level Cyber Security Role

Remote

CMMC Cyber Security Consultant W2 role fully remote

Remote

Entry-Level Data Analysis Coordinator (Remote)

Remote

Entry Level Data Scientist/Analyst(Remote)

Remote

Entry Level Data Entry Clerk / Remote Analyst – Analytics Expert for blithequark’s Merchandise Planning Team

Remote

Sourcing Analyst (Entry level Data Analyst)

Remote

Jr Product Analyst (Entry Level -Mortgage Product Team)

Remote

**Experienced Entry-Level Remote Data Analyst – Data-Driven Insights for Business Growth**

Remote

Director of Sales Development

Remote

Growth Marketing Program Manager

Remote

**Experienced Full Stack Support Specialist - Chat, Remote Customer Service Representative**

Remote

COMPLIANCE CONSULTANT, FCH – CORPORATE COMPLIANCE

Remote

Enterprise Account Executive

Remote

**Experienced Home Depot Customer Support Specialist - Remote Customer Care and Sales Role with Competitive $25/Hour Salary**

Remote

Complex Case Manager RN – GI Nurse (Remote), Multiple Locations

Remote

**Experienced Part-Time Remote Customer Service Representative – Delivering Exceptional Experiences for arenaflex Customers**

Remote

Experienced Performance Data Analyst – Remote Career Opportunity in Data-Driven Insights and Analytics at arenaflex

Remote

Experienced Remote Data Entry Clerk and Personal Assistant – Part-Time, Flexible, and Home-Based Opportunity with arenaflex

Remote
← Back to Home