Security Operations Center (SOC) Analyst

Are you a high-energy, motivated, smart individual who thrives in a dynamic environment? As a member of a talented and progressive security team, your contributions will immediately affect the organization's success.

The Acoustic Security team is looking for an experienced Security Analyst to join a team focused on threat detection, incident response, and cloud security, securing the next-generation digital marketing platform.

Work alongside passionate security professionals in a complex environment.

This position protects Acoustic products and platforms, to be used by thousands of customers worldwide. This role protects scalable systems to manage our customers’ data consisting of hundreds of millions of contacts and associated attributes. You will research innovative security technologies and processes and work with fresh solutions that can be used to improve security within a cloud environment.

This is a small team so we need team members that can work independently with minimal guidance, that can think strategically to make our program better, and who want to learn and grow.

What will you do:

•  Respond to and resolve cybersecurity incidents, and proactively prevent the reoccurrence of these incidents
• Perform proficient forensic analysis using security tools and monitoring systems to discover the source of anomalous security events.
• Manage and document security incidents following documented Incident Response plans and playbooks.
• Identify and onboard necessary log sources to ensure visibility across the enterprise.
• Enhance detection and alert maturity
• Create dashboards, reports, and metrics.
• Manage tools such as EDR, AV, SIEM, IPS/IDS, HIDS, and other security systems
• Recommend implementation of countermeasures or mitigating controls
• Perform vulnerability scanning and remediation management.
• Perform cloud security compliance scans and remediation management.
• Regularly check the work queue for incoming assignments and complete all work daily and respond to work queue items utilizing pre-defined procedures.
• Participate in a weekly team meetings to share updates and discuss projects.

Requirements

• 3 years of experience as a SOC Analyst, Security Content Developer and/or Security Engineer in a complex cloud based enterprise
• Willing to work a pre-scheduled shift, work 1-2 on call weekends a month, and remain on-call as necessary for escalations
• Working experience deploying and managing SIEM platforms
• Strong understanding of attack vectors, persistence mechanisms, and detection avoidance tactics
• Work experience with security best practices for Amazon Web Services (AWS) and Azure
• Working knowledge of vulnerability management processes and tools (e.g. Rapid7)
• Experience with Linux, Windows, and Mac systems
• Knowledge and understanding of network protocols and devices
• Bachelor's degree in STEM fields or equivalent work experience

What will set you apart?

• Experience with Rapid7 InsightsVM
• Experience with Crowdstrike Falcon and Horizon
• Experience with Palo Alto Prisma Cloud, Zscaler or other similar remote access and secure internet solutions
• The ability to thrive in a fast-paced work environment that requires independent self-direction, strong attention to detail, and an aptitude for team collaboration and open communication.
• Excellent troubleshooting and problem-solving skills.
• Demonstrated passion for technology with an “always learning” mode mentality.
• Not afraid of failure and willing to fail fast so you can move onto new ways of doing things.
• Willing to have flexible hours, on occasion the need the change shift hours temporarily with another team member.