SOC Analyst
Newton, MA, United States
Company Description
About CyberArk:
CyberArk (NASDAQ: CYBR) is the global leader in identity security. Centered on intelligent privilege controls, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud environments and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit https://www.cyberark.com, read the CyberArk blogs or follow on LinkedIn, X, Facebook or YouTube.
Job Description
What you will do:
- Operate the Information security SIEM/SOC to monitor and respond to any security alert and potential security incident.
- Take reactive and proactive actions against cyber threats and incidents
- Maintain and enhance SOC security systems such as SIEM, SOAR, PT simulations, and additional other market-leading systems to always own complete defense visibility and to continuously align it with new attack vectors and techniques
- Handle SIEM alerts, document actions and responses, and track remediation actions.
- Design and write code to support SIEM and respective systems rules creation, reports and dashboards, playbook definitions and development, interfaces development etc.
- Familiarity with cloud services, cloud environment architecture, and the major cloud providers (AWS, GCP, Azure)
- Research, simulate, and run penetration tests using publicly available proprietary tools.
- Lead security projects/activities with other security and R&D groups according to need.
#LI-JH1
Qualifications
What you need to succeed:
- At least 2 years of experience as a SOC operator – a must
- At least 3 years of experience in security analysis in a high-tech company
- Excellent understanding and proven hands-on experience with a leading Splunk SIEM system (defining and building correlation, aggregation, normalization, and parsing).
- Proven experience in cloud threat hunting and working with AWS security tools – an advantage
- Experience in SOAR system (Cortex XSOAR- an advantage): design and implement playbooks, write scripts and tools (connectors) – an advantage.
- Strong understanding of security principles, policies, and industry best practices
- Networking knowledge – understand networking essentials, components, data flows, architecture, ports, and protocols, wireless, etc.
- General operating system knowledge – Solid understanding and practical experience in various flavors of Windows, macOS and Linux, OS configuration, file system structures, OS components, mobile operating systems etc.
- Scripting/coding experience (Python, PowerShell, etc.) for developing, extending, or modifying exploits, shellcode or exploit tools
- Hands-on experience in static and dynamic malware analysis - an advantage
- Excellent problem-solving/analytical skills
- Excellent communication and interpersonal skills
- A team player – working in a global team
- Ability to work in a multi-tasking environment
- Availability – the job requires high availability
- Must be a US Citizen
Additional Information
CyberArk is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
We are unable to offer Visa sponsorship or transfer at this time.
The salary range for this position is $81,000 – $115,000/year, plus commissions or discretionary bonus, which will be based on the employee’s performance. Base pay may also vary considerably depending on job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits.
Tags: AWS Azure Cloud Cyberark DevOps Exploit Exploits GCP Linux MacOS Malware PowerShell Python R&D Scripting Security analysis SIEM SOAR SOC Splunk Windows XSOAR
Perks/benefits: Health care Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Information Security Architect jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Threat intelligence-related jobs
- Open Pentesting-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs