← all jobs

Cyber SOC Security Analyst Columbia, SC / Remote ((candidate needs to spend 1 week every 3 months)

Work from home Full-time role Hiring

Phone/Skype Hire. Mostly remote. The candidate needs to spend 1 week every 3 months at the client site. Location: Columbia, SC / Remote Duration: 12+ months This specific Statement of Work is for a Cyber SOC Experienced Analyst to prevent, detect, investigate, and assist in directing remediation to cyber-attacks and threats against organization enterprise applications, networks, and services by investigating indicators of suspicious and malicious activity, and proactively discovering threats to organization. Individual must have at least 7 years' experience in Security with a MINIMUM of 5 years hands on working with a SIEM creating offenses, alerts and grooming logs. Preference is an individual who has experience leading a CSIRT, CERT, SOC or Investigations team. SIEM preference is QRadar or Azure Sentinel. This position requires previous security operational center experience - monitoring, investigating, alerting, and reporting security threats. It also requires previous experience in developing SOPs and documentation. Candidate will be required to explain previous experience in the following:

  • Developing offenses and alerts in SIEM and Incident Response tools
  • Oversight and development of Use Cases, Playbooks/Runbooks, SOP.
  • Impact of their work on improving the security of an organization.
  • Network vulnerability and compliance scanning
  • Review and interpretation of the results thereof
  • Determination of severity and urgency when evaluating risk
  • Working with system owners to determine if and when corrective action will be taken. You will have a technical role, supporting the SOC Analysts to find the threat actors attempting to attack infrastructure. You will need to be a technical and professional leader, someone who enjoys training and mentoring teammates, and a person who can encourage and elevate the team. Under general supervision, the contractor will serve as an analyst reporting directly to a functional manager. Contractor will be a team member that ensures the stability and integrity of data, and server services through monitoring, maintenance, support, and optimization of all server infrastructure. This individual has 24/7 on-call responsibilities shared with the group. This position can be remote, but we require contractor to report on-site for one week each quarter at vendor's expense. Responsibilities: Proactively search for active intrusions in the environment, recognizing potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
  • Work closely with escalation points to close out complex investigation
  • Conducting holistic, investigative analysis and rating the risk associated with observed activity
  • Review investigation escalations from SOC Analysts to ensure accurate analysis and provide advice/mentorship
  • Refine and develop dashboards, queries and reports to continuously improve security situational awareness
  • Maintain SOC documentation, procedures, processes and hardware and software inventory detail
  • Demonstrate a sound understanding of security technologies and their function within a networked environment
  • Adhere to corporate information security guidelines and promote information security among coworkers
  • Develop reports (manual and automated) to support the development, collection, and reporting of Quality Assurance and Performance metrics.
  • Performs other duties and special projects as assigned. Skills Needed
  • Currently employed as a SOC 2 or SOC 3 analyst
  • Currently using SOAR and SIEM technology
  • Risk and vulnerability assessments
  • Incident management
  • Security information event management (siem) tuning of offenses, alerts
  • Excellent written and verbal communication skills
  • Threat hunting
  • Ability to use industry-leading security tools
  • Demonstrate knowledge of information security principles and practices
  • Knowledge of common risks and threats for networking, databases, systems, cloud and web operations
  • IRS Safeguard Computer Security Evaluation Matrix (SCSEM)
  • Forensics
  • Experience in projects involving PCI/NIST security implementations and/or audits.
  • Windows Security, including Cloud
  • Wireshark
  • SIEM tuning of log sources
  • SIEM systems development/configuration
  • Penetration Testing
  • Tenable Security Center Administration
  • OWASP Top 10 remediation techniques Required Education/Certifications: Seven (7) years of experience in security information technology systems or related area, with a minimum of 5 years utilizing SIEM technology. Cloud Certifications Microsoft Certifications, Azure, Security related GCIH, GCTI, GCCC, GCWN, GSEC, CEH, GCIA, GCFA, GCFE, GREM, CCIM, CFCE, CCE, CIFI, CHFI, CCNA, CCNA Cyber Ops IBM Certified Associate Analyst - Security QRadar SIEM

More open positions

[Remote] Senior Client Security Analyst

Work from home Full-time role

Staff Threat Intelligence Analyst

Work from home Full-time role

Analyst - Cyber Threat Intelligence (Remote) - (Job Number: WHQ00023939)

Work from home Full-time role

Cybersecurity Analyst II - Cyber Threat Intel (Remote)

Work from home Full-time role

Sr. Threat Intelligence Analyst; Remote, West Coast

Work from home Full-time role

Remote Customer Experience Coordinator- Email, Chat, Call

Work from home Full-time role

Consultor a Jr administración Payroll Argentina

Work from home Full-time role

Associate Growth Programme Manager - Business Development

Work from home Full-time role

[Remote] Finnish Language Speakers

Work from home Full-time role

Remote Data Entry Specialist – Entry‑Level Typist – Flexible Home‑Based Position at careerzynith

Work from home Full-time role

Remote Office Administrator

Work from home Full-time role

Pension Actuary

Work from home Full-time role

Electrical Engineer – Entry Level (Hybrid)

Work from home Full-time role

Especialista de AI Adoption & Implementation

Work from home Full-time role

Senior Lawyer, Helix (Virtual)

Work from home Full-time role

Prior Authorization Nurse – Remote – AZ

Work from home Full-time role

SVP Chief of Staff - Head of Strategy

Work from home Full-time role

Dynamics 365 Customer Engagement Cloud Solution Architect Bilingual (Spanish-English)

Work from home Full-time role

Membership Presale Associate

Work from home Full-time role

Remote Clinical Supervisor - LCSW - Missouri (1099, part-time)

Work from home Full-time role

U.S. Tax & Accounting Manager

Work from home Full-time role