SOC Engineer

Oak Brook, IL, United States

BDO USA

BDO delivers assurance, tax, and financial advisory services that are tailored to our clients' industry, unique needs and goals.

View company page

Job Summary:

The Senior SOC Engineer  is a multi-faceted, challenging role that requires excellent attention to detail, the ability to effectively communicate and influence clients, develop relationships with technical and business contacts, coordinate delivering, operations, and project resources, and follow tasks through to completion. The ideal candidate would have a strong problem-solving skills and analytics aptitude. This person is a main point of contact in security posture monitoring and threat response activities and is directly responsible for troubleshooting security events. This role will provide the initial analysis during security incidents, establishing the extent of the threat, business impacts, and then advising and performing the most suitable course of action to contain and remedy the incident. The Senior IT Security Engineer must maintain a good knowledge of the threat landscape, help enhance current capabilities, and provide support in the identification of new methods of detecting threats. 

Job Duties:

  • Acts as a primary point of contact regarding all questions and information including progress, challenges encountered, and issues identified within the SOC 
  • Provides exceptional client service and develops deliverables and/or solutions to issues
  • Identifies, grows, and maintains relationships with client personnel, including members of client management 
  • Prepares formal and informal presentations for various internal meetings 
  • Reviews and participates in project plans for the improvement of service delivery 
  • Facilitates the project plan making updates as directed by the management team 
  • Manages tasks closely to make sure they are being completed in a timely manner 
  • Documents information from internal project meetings 
  • Escalates any issues to senior management, as needed 
  • Fosters a positive demeanor, learning attitude, and client service mentality with staff
  • Other duties as required 

Supervisory Responsibilities: 

  • Supervises the day-to-day workload of Associates within the SOC to ensure that deliverables are met
  • Ensures teams are trained on all relevant software 
  • Evaluates the performance of team members and assists in the development of goals and objectives to enhance professional development 
  • Delivers periodic performance feedback and completes performance evaluations for teams in accordance with Firm guidance 
  • Acts as mentor to team members, as appropriate

Qualifications, Knowledge, Skills and Abilities:

Education

  • High School Diploma or GED, required
  • Bachelor’s Degree in Information Technology, Cybersecurity, or Computer Science, preferred

Experience

  • Four (4) or more years examination and remediation experience with cyber security incidents or event reviews involving a range of security products and technologies, required
  • Three (3) or more years of experience performing analytics examinations of logs and incidents in an IT Services environment, required
  • Three (3) or more years of experience with advanced ticket management with the understanding of security logs and NOC procedures, required
  • Three (3) or more years of experience with operating systems, network architecture, and products advanced knowledge, required
  • One (1) or more years of experience scripting security events, required
  • Three (3) or more years creating or recommending content creation in SIEM/Big Data Solutions, preferred

License(s)/Certification(s)

  • Microsoft SC-900, 200, 300 preferred
  • Any IT security certifications, preferred

Software

  • Experience with four (4) or more of the following, required:
    • Microsoft Sentinel
    • Information Security tools & packet analyses tools (e.g. CB, Wireshark)
    • Intrusion Detection (e.g. IDS/IPS tools)
    • Firewall troubleshooting 
    • Strong Windows and Linux 
    • Internet Protocols and Services (e.g. TCP/IP, FTP, HTTPS, SSH)
    • Networking infrastructure 
    • Log analysis/ Windows event analysis
    • Network and Host basic forensics
    • Antivirus solutions
    • Troubleshooting and root cause analyses
  • One (1) or more years working with any of the Detection and Response technologies, required: 
    • Cortex XDR, XSOAR, Splunk, Elasticsearch, MISP, FireEye AX,EX,NX,CMS, security orchestrator, Cisco NGIPS/Sourcefire, Palo Alto firewall, McAfee, Cylance, Tanium, Snort, Bro, Suricata, Jupyter notebooks, EnCase, Access, Data FTK, volatility, Wireshark, Nessus/Security Center, Nmap, Metasploit pro, Windows Event forwarding, SolarWinds, Logstash, syslog, ysmon, one way data diodes, IDA Pro

Languages: 

  • N/A

Other Knowledge, Skills, & Abilities

  • Strong verbal and written communication skills
  • Excellent interpersonal and client relationship skills
  • Ability to work in a deadline-driven environment while handling multiple projects/tasks simultaneously with a focus on details
  • Ability to multi-task while working independently or within a group environment
  • Ability to work well under pressure while dealing with unexpected problems in a professional manner 
  • Ability to discuss technology and effectively communicate technical issues with all audiences.
  • Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette

KEYWORDS: SOC, Networking, Security, Intrusion Detection, Windows, Linux, Internet Protocol, Network Infrastructure, Host and Network Based Forensics, Antivirus Solutions, Troubleshooting, EDR Platform, SIEM Platform, Cyber Security, Cyber, Network Operations Center, Cortex XDR, XSOAR, Splunk, Elasticsearch, MISP, FireEye AX,EX,NX,CMS, security orchestrator, Cisco NGIPS/Sourcefire, Palo Alto firewall, McAfee, Cylance, Tanium, Snort, Bro, Suricata, Jupyter notebooks, EnCase, Access, Data FTK, volatility, Wireshark, Nessus/Security Center, Nmap, Metasploit pro, sysmon, Windows Event forwarding, SolarWinds, Logstash, syslog, one way data diodes, IDA Pro.

Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world. 

At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.  BDO professionals provide assurance, tax and advisory services for a diverse range of clients across the U.S. and in over 160 countries through our global organization.

BDO is the first large accounting and advisory organization to implement an Employee Stock Ownership Plan (ESOP). A qualified retirement plan, the ESOP offers participants a stake in the firm’s success through beneficial ownership and a unique opportunity to enhance their financial well-being. The ESOP stands as a compelling addition to our comprehensive compensation and Total Rewards benefits* offerings. The annual allocation to the ESOP is fully funded by BDO through investments in company stock and grants employees the chance to grow their wealth over time as their shares vest and grow in value with the firm’s success, with no employee contributions. 

We are committed to delivering exceptional experiences to middle market leaders by sharing insight-driven perspectives, helping companies take business as usual to better than usual. With industry knowledge and experience, a breadth and depth of resources, and unwavering commitment to quality, we pride ourselves on:

  • Welcoming diverse perspectives and understanding the experience of our professionals and clients
  • Empowering team members to explore their full potential
  • Our talented team who brings varying skills, knowledge and experience to proactively help our clients navigate an expanding array of complex challenges and opportunities
  • Celebrating ingenuity and innovation to transform our business and help our clients transform theirs
  • Focus on resilience and sustainability to positively impact our people, clients, and communities

*Benefits may be subject to eligibility requirements.

Equal Opportunity Employer, including disability/vets

Click here to find out more!
Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Analytics Antivirus Big Data Computer Science Content creation EDR Elasticsearch EnCase Firewalls Forensics IDS Intrusion detection IPS Linux Log analysis Metasploit MISP Monitoring Nessus Nmap Scripting SIEM Snort SOC Sourcefire Splunk SSH TCP/IP Windows XDR

Perks/benefits: Career development Startup environment Team events

Region: North America
Country: United States
Job stats:  3  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.