NOC Cyber Security Analyst - Nationwide

  • BDO,
  • Chicago, IL
  • 1 week ago
SOC, Networking, Security, Intrusion Detection, Windows, Linux, Internet Protocol, Network Infrastructure, Host and Network Based Forensics, Antivirus Solutions, Troubleshooting, EDR Platform, SIEM Platform, Cyber Security, Cyber, Network Operations Center
Full Time
Depends on Experience

Job Description

Job Summary

BDO’s Core Purpose is Helping People Thrive Every Day. Our Core Values reflect how we manage our work, our relationships and ourselves. As an employee of the firm, you will live true to our Core Values of people first, being exceptional every day in every way, embracing change, feeling empowered through knowledge and choosing accountability. Our Core Values are the standards by which we conduct ourselves day in and day out, both internally and externally.

BDO Digital, LLC, a subsidiary of BDO USA, LLP, provides a holistic portfolio of technology, transformation services and solutions. We are an organization that values your time, talent, and contributions. Collaborate with BDO Digital’s cross-disciplinary team who work together to solve digital needs and unearth new opportunities to drive competitive advantage. Our commitment to each other is why BDO Digital is a recognized leader for our culture, employee satisfaction and career growth. We’re looking for people with the same drive; to combine teamwork with technology to produce amazing results.

This role is part of our Managed Services team to serve as the primary responder to security events within the Network Operations Center. The ideal candidate would have a strong problem-solving skills and analytics aptitude. This role participates in security posture monitoring and threat response activities and is directly responsible for troubleshooting security events. The preferred candidate will provide the initial analysis during security incidents, establishing the extent of the threat, business impacts and then advising and performing the most suitable course of action to contain and remedy the incident. The Security Analyst must maintain a good knowledge of the threat landscape, help enhance current capabilities and provides support in the identification of new methods of detecting threats.

As there are several cities listed within this job description, we would consider candidates nationwide.

- Monitor security event platforms and follow incident playbook for first response, triage, potential resolution and participate in postmortem activities as required.
- Conducts network monitoring and intrusion detection analysis using various network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), Azure security and audit log management etc.
- Provide proactive feedback to enable improvement of the current monitoring rules, based on information and knowledge/experience
- Ability to react quickly, decisively and deliberately in high-stress, high-impact situations
- Creates daily, weekly, and monthly report for Security Management Team
- Performs front line response and escalation tasks and updates runbooks and procedures as needed
- Compile statistics and contribute to the improvement and creation of playbooks
- Use public cyber security resources (e.g. sites/blogs/podcasts) to stay up to date with latest news, threats, and security analysis tools
- Other duties as required

Qualifications

Education
- High School Diploma or GED, required
- Bachelor’s Degree with a major in Information Technology or Computer Science, preferred

Experience
- Two (2) or more years of experience of network protocols, configurations, or IT operations, required
- Two (2) or more years of experience in infosec, cybersecurity, system or networking, required
- Ability to triage problems, design and identify solutions and appropriately escalate issues in fast-paced environment, required
- Two (2) or more years of experience within cloud technologies such as Azure, Azure Stack Azure Backups, AWS or similar cloud experience, preferred
- Some Experience with EDR platform or SIEM Platform, preferred
- Prior experience with help desk ticketing systems and service desk management tools, preferred

License(s)/Certification(s)
- Any Security certifications, preferred
- System / Networking certifications, preferred

Experience with three or more of the following, required
- Information Security tools & packet analyses tools (e.g. CB, Wireshark)
- Intrusion Detection (e.g. IDS/IPS tools)
- Firewall troubleshooting experience
- Strong Windows and Linux experience
- Internet Protocols and Services (e.g. TCP/IP, FTP, HTTPS, SSH)
- Networking infrastructure
- Log analysis/ Windows event analysis
- Network and Host basic forensics
- Antivirus solutions
- Strong troubleshooting and root cause analyses skills

Other Knowledge, Skills & Abilities
- Strong oral and written communication skills
- Excellent interpersonal and customer relationship skills
- Capacity to work in a deadline-driven environment while handling multiple projects/tasks simultaneously with a focus on details
- Capable of successfully multi-tasking while working independently or within a group environment
- Capable of working well under pressure while dealing with unexpected problems in a professional manner
- Ability to communicate technical issues with non-technical people
- Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette

KEYWORDS: SOC, Networking, Security, Intrusion Detection, Windows, Linux, Internet Protocol, Network Infrastructure, Host and Network Based Forensics, Antivirus Solutions, Troubleshooting, EDR Platform, SIEM Platform, Cyber Security, Cyber, Network Operations Center.

Multiple Locations

Akron, Anchorage, Atlanta, Austin, Baltimore, Boca Raton, Boston, Boulder, Charlotte, Cherry Hill, Chicago, Cincinnati, Cleveland, Columbia, Columbus, Columbus (BSC), Coral Gables, Dallas, Des Plaines, Detroit, Fort Lauderdale, Fort Lauderdale 301, Fort Worth, Gardner, Grand Rapids, Grand Rapids (BSC), Greater Philadelphia, Greater Washington D.C - Potomac, Greater Washington D.C. - McLean, Greenville, Harrisburg, High Point_BDO Collections, Houston, Indianapolis, Jacksonville, Kalamazoo, Lakeland, Las Vegas, Las Vegas - 6100 Elton, Long Island, Los Angeles, Madison, Madison 8383, McLean, Memphis, Miami, Miami - Brickell, Milwaukee, Minneapolis, Nashville, New York, New York 600, New York 622, Norfolk, Oak Brook, Orange County, Orlando, Philadelphia, Phoenix, Pittsburgh, Raleigh, Reno, Richmond, Rosemont, Salt Lake City, San Antonio, San Diego, San Francisco, San Jose, San Ramon, Seattle, Seattle 601, Spokane, St. Louis, Stamford, Tampa Bay, Tulsa, Valhalla, Washington, DC, West Palm Beach, Wilmington

Dice Id : RTL66359
Position Id : 23140BR
Originally Posted : 3 months ago
Have a Job? Post it

Similar Positions

Cybersecurity Engineer
  • BDO
  • Chicago, IL, USA
Special Agent: Cybersecurity/Technology Background
  • Federal Bureau of Investigation (FBI)
  • Chicago, IL, USA
Cloud Security Engineer
  • IT Associates, Inc.
  • Chicago, IL, USA
Cybersecurity Operations Analyst
  • Aon
  • Chicago, IL, USA
Lead Cloud Engineer
  • Make Corporation
  • Oak Brook, IL, USA
Senior Cyber Security Incident Response Analyst
  • Request Technology, LLC
  • Plano, IL, USA
Special Agent: Cybersecurity/Technology Background
  • Federal Bureau of Investigation (FBI)
  • Detroit, MI, USA
Network Administrator
  • Vital Tech Solutions
  • Detroit, MI, USA