Overview:
The IT Security Team is looking for a highly skilled and experienced Senior Security Operations Center (SOC) Analyst to join our growing cybersecurity team. The Senior (SOC) Analyst will be the first line of defense, you will be responsible for monitoring, detecting, analyzing, and responding to security incidents to protect our organization. The Senior SOC Analyst will perform daily incident response triage activities and lead the investigation of cybersecurity incidents as necessary. The salary range for this role is $130,000 to $150,000; however, Lakeview considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidates work experience.
Responsibilities:
- Monitor security alerts and notifications from various log sources and security platforms (SIEM, IDS/IPS, firewalls, EDR, etc.) to respond to potential threats in real-time.
- Triage potential incidents to identify false positives, determine scope and impact, and work with stakeholders across the organization to respond in a timely manner.
- Conduct proactive investigations and lead incident response activities for the SOC.
- Work with customers to investigate potential phishing emails and take corrective actions.
- Develop, document, and automate incident response procedures with Splunk SOAR.
- Work with the team to continuously improve security operations, analytics, threat hunting, and security orchestration and automation capabilities.
- Collaborate with other teams to optimize monitoring and detection tools and processes.
- Evaluate and enhance SOC processes, playbooks, and standard operating procedures (SOPs) to increase efficiency and effectiveness.
- Collaborate with IT, network, and other security teams to ensure effective incident management and resolution.
- Communicate findings and recommendations to stakeholders, including technical and non-technical audiences.
- Prepare and present reports on security incidents, metrics, and trends to management.
Qualifications:
- Strong oral and written communication skills
- Ability to execute independently with limited direction
- Ability to translate security-related matters into business terms that are clear and understandable to stakeholders
- Able to navigate a demanding and high-pressure environment
- Can think strategically and incorporate business needs into technical roadmaps
- Strong problem-solving and trouble-shooting skills
- Understanding of project management principles
- Ability to play secondary role for other IAM requirements
- 10+ years of related work experience in IT and Cyber Security.
- 5+ years of experience working in an operational environment (e.g. SOC, NOC).
- A strong background in SIEM and security analytics is required.
- Must be detail oriented and have strong analytical skills.
- Hands-on experience with information security tools, such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices is required.
- Knowledge of TCP/IP communications, and common protocols and applications, including DNS, HTTP/S, and SMB is required
- Bachelors degree in a relevant field (e.g. Computer Security, Computer Science, Computer Engineering, etc.) preferred.
- One or more of the following certificates preferred: GSEC, GCED, GCIA, GCIH, GCFA, AWS Security Specialist, Azure Security Engineer Associate.
- A deep knowledge of Windows and Linux system operating systems is required. System administration experience is preferred.
- Must demonstrate knowledge of current cyber threats, technical exploits and mitigation strategies.
- Experience with Python, PowerShell, and Bash scripting is strongly preferred.
- Forensic experience is strongly preferred.
- Knowledge of Azure and AWS cloud infrastructure and security tools is strongly preferred.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus. The noise level in the work environment is usually moderate.
Lakeview is an Equal Employment Opportunity employer. All aspects of consideration for employment and employment with the Company are governed on the basis of merit, competence and qualifications without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, or any other category protected by federal, state, or local law.