Philadelphia, PA Description:
Our client is currently seeking a SOC Analyst Responsibilities:
Responsible for working in a 24x7 Security Operation Center (SOC) environment which consists of an in-house and outsourced SOC.
Able to participate in an on-call rotation for escalation
Perform real-time alert monitoring and risk mitigation.
Provide analysis and trending of security log data from a large number of heterogeneous security devices across different layers.
Provide Incident Response (IR) support when analysis confirms the actionable incident from the outsourced SOC and internal systems.
Provide threat and vulnerability analysis as well as security advisory services.
Analyze and respond to previously undisclosed software and hardware vulnerabilities.
Investigate, document, and report on information security issues and emerging trends.
Integrate and share information with other analysts and teams.
Participate in security projects and assist security operations and engineering teams.
Other tasks and responsibilities as assigned through the ticketing system.
Bachelor's degree in a related field (Security, Forensics or Computer Science is preferred)
At least 4 years of experience as a security analyst, incident handler/responder, security engineer, or penetration tester.
Excellent knowledge of security methodologies, processes (like Kill chain/diamond models, and MITRE ATT&CK framework).
Excellent knowledge of technical security solutions (firewalls, SIEM, NIDS/NIPS/HIDS/HIPS, AVs, DLP, proxies, network behavioral analytics, endpoint, and cloud security).
In-depth knowledge of TCP/IP, UDP, DNS, FTP, SSH, SSL/TLS and HTTP Protocols, network analysis, and network/security applications.
Very good knowledge of common malware threats and attack methodologies.
Professional Certifications: GCIA, GCIH, GCFE, GCFA, Security+, CCNA CyberOps, OSCP, GPEN, GWAPT, CEH, CISSP, or other equivalent certifications are highly desirable.Core Competencies:
Accountable for the successful completion of multiple, individual projects simultaneously.
Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.
Manage change and demonstrate adaptability by embracing change and adjusting priorities or processes and approach as needs dictate.
Work independently as a team representative in the allocated region as well as showing excellent teamwork skills.
Ability to develop thorough documentation and operational playbooks, in addition, to suggest alert enhancements to improve detection capability.
Experienced in working with external vendors and third parties.Contact:
This job and many more are available through The Judge Group. Find us on the web at www.judge.com