SOC Analyst - Tier 1 (Night Shift and Weekends)
True Zero TechnologiesTrue Zero specializes in creating cybersecurity programs and software solutions that enable agency leaders to run a proactive defense, with better intelligence and more efficient collaboration.
Tier 1 SOC Analyst Responsibilities
- Monitor security event logs and alerts generated by various security technologies, including SIEM, IDS/IPS, firewalls, and endpoint protection systems.
- Conduct initial triage and investigation of security incidents, following established procedures and guidelines.
- Escalate and collaborate with Tier 2 and Tier 3 SOC Analysts, Incident Response teams, and the SOC Lead/Program Manager to ensure timely and effective incident response, resolution, and reporting.
- Provide first-level analysis of security events, performing data analysis and correlation to identify potential threats and vulnerabilities.
- Generate and maintain accurate documentation of security incidents, including incident reports, investigation findings, and remediation actions.
- Monitor threat intelligence sources and stay informed about the latest security vulnerabilities, exploits, and attack techniques.
- Participate in shift rotations to provide 24/7 coverage of the SOC operations.
- Develop and continuously improve SOC processes and workflows to enhance detection and response capabilities, and assist in the documentation of SOC processes.
- Participate in tabletop exercises and incident response drills to test and validate the effectiveness of SOC procedures.
Tier 1 SOC Analyst Requirements
- U.S. Citizenship Required.
- Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent experience).
- Proven experience (2+ years) in a SOC or security-related role, with a focus on incident monitoring, analysis, and response.
- Familiarity with security technologies and tools such as SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection systems.
- Understanding of common network protocols (TCP/IP, DNS, HTTP, etc.) and their role in security monitoring.
- Knowledge of security incident response methodologies and best practices.
- Familiarity with various operating systems (Windows, Linux, etc.) and their security features.
- Basic understanding of malware analysis and its impact on security incidents.
- Strong analytical and problem-solving skills, with the ability to work under pressure and meet tight deadlines.
- Excellent communication skills, both written and verbal, with the ability to effectively document and report on security incidents.
- Security certifications such as CompTIA Security+, GCIH, or GCIA are highly desirable.
- Experience with threat hunting and proactive detection techniques.
- Familiarity with log analysis and familiarity with log management tools.
- Understanding of common cybersecurity frameworks such as NIST, ISO 27001, or CIS Controls.
- Knowledge of scripting languages (Python, PowerShell, etc.) for automation and data analysis.
- Familiarity with cloud platforms and their impact on SOC operations (e.g., AWS, Azure, GCP).
- Ability to work collaboratively in a team environment and effectively communicate with technical and non-technical stakeholders.
- Continuous learning mindset and a passion for staying up to date with the latest cybersecurity trends and technologies.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Cloud CompTIA Computer Science DNS Exploits Firewalls GCIA GCIH GCP IDS Incident response IPS ISO 27001 Linux Log analysis Malware Monitoring NIST PowerShell Python Scripting SIEM SOC TCP/IP Threat intelligence Vulnerabilities Windows
More jobs like this
RICHLAND, WA - Remote RICHLAND, WA - Remote Full TimeMid Mid-levelUSD 35K - 65K * USD 35K+ *
North Wind Group
Vulnerability Remediation Analyst II 03115 NWSOLCISA Clearance IT infrastructure Security Clearance Vulnerabilities Vulnerability management
401(k) matching Career development Competitive pay Health care Insurance +1
São Paulo, State of … São Paulo, State of São Paulo, Brazil … Full TimeMid Mid-levelUSD 97K - 116K * USD 97K+ *
Mid-level Cyber Threat Intelligence AnalystCyber Kill Chain Finance Linux MITRE ATT&CK Threat intelligence TTPs
Career development Equity Flex hours Health care Home office stipend +3
ITSCO - Detroit - … ITSCO - Detroit - 500 Woodward Avenue Full TimeMid Mid-levelUSD 78K - 149K USD 78K+
IT Services- Cyber Threat Response Analyst- Sr. Associate (US Remote)Clearance Clearance Required Cloud Cyber Kill Chain DFIR Forensics +19
Career development Competitive pay Flex hours Flex vacation Health care +1
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Information Security Officer jobs
- Open Chief Information Security Officer jobs
- Open Security Operations Engineer jobs
- Open Ingénieur DevSecops H/F jobs
- Open Staff Security Engineer jobs
- Open Analyste CERT / Incident Responder junior (H/F) jobs
- Open Senior Security Architect jobs
- Open Analyste CERT / Incident Responder senior (H/F) jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Consultant jobs
- Open Senior Security Analyst jobs
- Open o365 Security Architect jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Staff Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Electronic Warfare Advanced Tactical Trainer jobs
- Open Security Researcher jobs
- Open Product Security Engineer jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Governance-related jobs
- Open Risk assessment-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open CISM-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Security assessment-related jobs
- Open DoD-related jobs
- Open APIs-related jobs
- Open Forensics-related jobs
- Open Splunk-related jobs
- Open EDR-related jobs