SOC Analyst - Senior Consultant

Job Description

The Global Fusion Center - Incident Handling Level I Analyst is responsible for monitoring multiple security technologies and alert systems to engage in the detection and remediation of potential security events and incidents. The analyst will follow detailed operational process and procedures to appropriately analyze, escalate, and assist in creation of cases, basic investigations, and contribute to the enhancement of Fusion Center processes.

Job Responsibilities

• Monitor multiple security technologies, analyzing outputs and determining the next course of action.

• Correlate and analyze events using skill and technology to detect IT security incidents.  

• Follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents.

Primary Skills

• Good operating system knowledge on Windows/Linux/MACOS
• Good knowledge on basic information security concepts
• Good knowledge on networking fundamentals (TCP/IP, Network Layers, etc.)
• Good knowledge on Active Directory concepts
• Good knowledge and hands-on experience with any SIEM tools like  ArcSight, Qradar etc. and preferably Splunk
• Good knowledge and hands-on experience with any EDR/XDR tools like Crowdstrike, Microsoft Defender for Endpoint etc.
• Good knowledge and log analysis experience on Cloud solutions like AWS/Azure/GCP
• Strong written and verbal communication skills
• 2-3years of relevant experience as an information security analyst in areas such as: security operations center (SOC),  incident handling
• Good to have any of the basic security certifications like GIAC Information Security Fundamentals (GISF)/GIAC Security Essentials (GSEC)/GIAC Certified Incident Handler (GCIH)/Certified Ethical Hacker/CompTIA Security+ etc.

Experience

4 to 6 years

Shift Timing

6:30 AM to 3:30PM (Weekend rotational shift)

2:30PM to 11:30PM (Weekend rotational shift)