SOC Analyst
| Company | MetroStar |
|---|---|
| Location | Washington, DC, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior |
Requirements
- 5+ years of experience in a SOC environment.
- An active TS/SCI security clearance
- Experience in identifying, analyzing, and responding to security incidents using SIEM tools and threat intelligence platforms.
- Strong skills in containing, mitigating, and resolving cybersecurity incidents following established protocols.
- Solid understanding of network protocols, firewalls, and endpoint security solutions to assess potential vulnerabilities.
- Experience examining system logs, packet captures, and forensic data to identify malicious activity.
- Ability to clearly document findings, write detailed incident reports, and effectively communicate with technical and non-technical stakeholders.
- Experience with automation tools and scripting languages to streamline security operations, threat detection, and incident response.
- Experience managing security events, and cyber threat response.
- Familiarity with ITIL frameworks, incident management, and service desk operations.
Responsibilities
- Monitor security alerts and events using SIEM (Security Information and Event Management) tools.
- Collaborate with leadership to develop and refine comprehensive cybersecurity strategies aligned with industry best practices and regulatory requirements.
- Serve as a technical authority, offering in-depth expertise in areas such as threat detection, incident response, vulnerability management, and risk assessment.
- Assess, design, and implement advanced security architecture solutions that address the organization’s evolving technology landscape.
- Identify, assess, and prioritize cybersecurity risks, working closely with cross-functional teams to mitigate potential threats effectively.
- Lead and coordinate incident response activities, guiding the team through timely and effective resolution of security incidents and breaches.
- Provide training and mentorship to internal teams, raising overall cybersecurity awareness and competence throughout the organization.
- Conduct thorough security audits and assessments to identify vulnerabilities, weaknesses, and areas for improvement.
- Investigate security incidents to determine root causes and implement remediation strategies.
- Conduct threat intelligence analysis to identify and mitigate emerging cyber threats.
- Perform real-time analysis of security logs and network traffic for anomalies.
- Develop and update SOC processes, playbooks, and incident response plans.
- Provide reports and recommendations to enhance security posture.
Preferred Qualifications
-
No preferred qualifications provided.