SOC Analyst L1

In SilverSky, we believe that every organization, regardless of size, deserves an enterprise-class cybersecurity program. We deliver world leading products and services for Managed Detection & Response, Endpoint Protection, Vulnerability Management, Email Protection, Security Device Management, Professional Services, Incident Response, and Security Partnerships.

We’ve built a strong team of high performing security experts and support staff, and we’re constantly looking for new talent in our global sites - Raleigh (US), Belfast (UK), and Manila (PH). Our goal is to be the #1 customer focused organization in the cyber security industry, by continually delivering demonstrable customer security value through all of our partnerships, products, and services.

Requirement Overview

We’re current recruiting for roles in our Security Operations Centre for a Level 1 (L1) Analyst. Analysts in SilverSky operate at the front lines of cyber security, actively reviewing and analyzing data to identify potential threats to our customers worldwide. The best candidates are inquisitive, eager to learn and possess a clear passion for the security industry.

The role is based upon a 24/7/365 shift pattern, supporting our Global SOC customers.

Primary Responsibilities

• Analysis of security incidents using an industry leading SIEM.
• Operate in a rotating 24x7 shift environment to include daytime, nighttime, and weekend work.
• Actively engage with customers on potential ongoing security incidents.
• Proactively analyze event data to adapt and improve current detection coverage.
• Work with internal partner teams with customer outcomes at the centre.

Education and Experience

• Degree in a relevant technical discipline, OR.
• Relevant Industry certifications (Security+, CEH, GIAC, etc.), OR.
• Commensurate technical industry experience.

Required Skills and Competencies

• Willingness to learn new skills and proactively drive self-education.
• Good verbal and written communication skills and work well with a team across multiple locations.
• Ability to work in a team environment, to work under pressure and shows flexibility.
• Familiarity with networking concepts & protocols (TCP/IP, UDP, DNS, DHCP, HTTP, etc.).
• Understanding of Operating System fundamentals (Windows or Linux).
• Understanding of fundamental cyber security concepts, such as types of cyber-attacks and why attackers perform them.
• Flexibility with working schedule; may it be day, mid, night and/or shifting and on calls.

Desired Skills and Competencies

• Previous experience working with a SIEM.
• Previous experience with other security detection technologies such as firewalls, IDS or log management (Splunk, etc).
• Experience working in a shift-based environment.
• Previous experience in a relevant technical role, such as a NOC.

NB: The successful candidate will be required to work in Morrisville, North Carolina office on a hybrid setup at least three (3) times a week or if required by the team and/or line manager.

NB: Consummate relevant experience may be accepted in place of missed criteria.

NB: There is no expectation of travel in this role.

NB: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.