Security Operations Center (SOC) Analyst

Job Overview We are seeking a dedicated and skilled Security Operations Center (SOC) Analyst to join our dynamic team. The ideal candidate will play a critical role in monitoring, detecting, and responding to security incidents while ensuring the integrity and security of our IT infrastructure. This position requires a strong understanding of cybersecurity principles, network security, and incident response protocols. Duties • Monitor security alerts and events from various sources including SIEM systems, IDS/IPS, and firewalls to identify potential threats. • Conduct thorough security analysis and vulnerability assessments to identify weaknesses in the network infrastructure. • Respond to security incidents by performing incident management and recovery procedures in accordance with established protocols. • Collaborate with IT teams to implement system hardening measures and ensure compliance with NIST standards, ISO 27000, and other relevant frameworks. • Utilize tools such as Splunk for log analysis and threat detection & response activities. • Manage identity & access management processes including authentication protocols and user access controls. • Maintain documentation of security incidents, investigations, and responses as part of the incident response lifecycle. • Participate in vulnerability management programs, including vulnerability research and remediation efforts. • Assist in the development of system security plans and ensure adherence to policies related to information security. Requirements • Bachelor’s degree in Computer Science or related field preferred; relevant experience may substitute for education. • Strong knowledge of computer networking concepts including WAN, LAN, TCP/IP, routing protocols (OSPF, BGP), and network protocols (DHCP, DNS). • Familiarity with cybersecurity tools such as Cisco ASA, Cisco ISE, firewalls, VPNs, encryption technologies (SSL), and remote access software. • Experience with operating systems including Windows, Linux (Debian, CentOS, Ubuntu), macOS, and UNIX variants. • Proficiency in scripting languages (Python, Bash) for automation tasks is advantageous. • Understanding of cloud computing environments (AWS, Azure) and cloud architecture principles. • Knowledge of IT governance frameworks such as COBIT or ITIL is a plus. • Familiarity with virtualization technologies (VMware) and network management tools (SolarWinds). • Ability to work collaboratively within a team environment while also being self-motivated to take initiative on tasks. • Excellent problem-solving skills with a keen attention to detail. Join us as we work together to enhance our cybersecurity posture while ensuring the safety of our organizational assets. We look forward to your application! Job Types: Full-time, Contract Pay: $45.00 - $50.00 per hour Expected hours: 40 per week Benefits: • 401(k) Application Question(s): • can you go 5 days onsite Experience: • SoC: 5 years (Required) • forensic investigation: 1 year (Required) • System administration: 5 years (Preferred) • XDR: 1 year (Preferred) • Microsoft Defender: 1 year (Preferred) • SIEM: 3 years (Required) Work Location: In person