Role: SOC Analyst L1
Location: Onsite in Plano, TX 100%
The Security Operations Center (SOC) Analyst is responsible for Monitoring, analyzing, and responding to global security threats in real-time to ensure the protection of our organization’s assets and stakeholders, delivering expert security analysis and incident response support to our global operations, mitigating potential security risks and threats, Working collaboratively with cross-functional teams to identify and mitigate security threats, ensuring the confidentiality, integrity, and availability of our organization’s assets and Staying up-to-date with emerging security threats and trends, providing actionable intelligence and insights to inform security decision-making and drive business outcomes.
Primary Responsibilities:
- Monitoring, analyzing, and responding to global security threats in real-time to ensure the protection of our organization’s assets and stakeholders.
- Delivering expert security analysis and incident response support to our global operations, mitigating potential security risks and threats.
- Working collaboratively with cross-functional teams to identify and mitigate security threats, ensuring the confidentiality, integrity, and availability of our organization’s assets.
- Give incident description and recommendation as per security best practices.
- Generate reports from SIEM tools daily/weekly/monthly and submit them to clients with analysis.
- Willing to work in 24/7 shift
- Providing high-quality security services, including threat detection, incident response, and security monitoring, to support our organization’s global security posture.
- Responding to alerts from the various monitoring/detection systems and platforms within defined SLAs.
- Staying up-to-date with emerging security threats and trends, providing actionable intelligence and insights to inform security decision-making and drive business outcomes.
Technical Experience: Minimum of 2 years of experience
- Operating System Knowledge: Proficiency in Windows, OS X, and Linux operating systems.
- Understanding possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.
- General knowledge of the capabilities and/or configuration of cybersecurity controls, specifically those relating to firewalls, access control, authentication, anti-virus/anti-malware, patching, and logging
- Understanding of fundamental networking protocols such as TCP/IP, DNS, HTTP, DHCP, etc.
- Security Tools: Familiarity with SIEM systems, IDS/IPS, firewalls, antivirus software, and endpoint detection and response solutions.
- Cloud Security: Understanding of cloud security principles and best practices.
Behavioral Experience:
- Ability to analyze complex security data and identify potential threats.
- Strong problem-solving skills to investigate and resolve security incidents.
- Effective communication skills to articulate security issues to technical and non-technical stakeholders.
- Strong interpersonal skills to build relationships with colleagues and stakeholders.
- Flexibility to work in a fast-paced environment with multiple simultaneous incidents.
- Ability to prioritize tasks effectively and manage time efficiently.
- Desire to stay current with emerging threats, technologies, and security best practices.
Education Requirements:
Bachelors in engineering - Computers/Electronics/Communication or related field.
Certifications:
Linked-in
Google