SOC Analyst_ Remote

SOC Analyst_ Remote

Contract

Start Date: As soon as possible.

Coverage Goal: True 24x7 SOC coverage

• Scheduling Flexibility: Initially aligned to New York business hours.
• Resources will gradually be rotated into evening/weekend shifts based on gaps.

REQUIRED SKILL SET

• CrowdStrike EDR: Investigation, alert triage, threat hunting.
• Core Security Mechanisms in Windows: The IT environment is primarily windows. Candidates should have functional knowledge of core windows security mechanisms.
• Security Principals and Security Identifiers
• Access Tokens
• Security Descriptors, DACLS/Discretionary Access Control, Access Control Entries (ACEs)
• Windows Privileges
• Kerberos and NTLM
• OS & Core Platform Skills:
• Windows security administration.
• Linux OS security administration. This is a much small part of the environment and less critical. Basic Linux skills are sufficient.
• Basic scripting or automation skills (e.g., PowerShell, Python).
• Network & Identity:
• Microsoft Entra ID (formerly Azure AD), including role-based access, MFA, SSO troubleshooting.
• Familiarity with Cisco Duo or Microsoft MFA systems.
• Basic knowledge of SSO (SAML) and troubleshooting auth integrations.