SOC Analyst

Oak Brook, IL, United States

Applications have closed

BDO USA

BDO delivers assurance, tax, and financial advisory services that are tailored to our clients' industry, unique needs and goals.

View all jobs at BDO USA

Job Summary:

The SOC Engineer is part of the Cyber team and serves as an escalation responder to security events within the Security Operations Center. The ideal candidate would have a strong problem-solving skills and analytics aptitude. This role participates in security posture monitoring and threat response activities and is directly responsible for troubleshooting security events. This role provides additional analysis during security incidents establishing the extent of the threat, business impacts, and then advising and performing the most suitable course of action to contain and remedy the incident. The SOC Engineer must maintain a good knowledge of the threat landscape, help enhance current capabilities, and provides support in the identification of new methods of detecting threats. 


Job Duties:

  • Monitors security event platforms and follow incident playbook for first response, triage, potential resolution, and participates in postmortem activities as required
  • Conducts network monitoring and intrusion detection analysis using various network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), Azure security, and audit log management etc.
  • Provides proactive feedback to enable improvement of the current monitoring rules, based on information and knowledge/experience
  • Creates daily, weekly, and monthly reports for Security Management Team
  • Performs front line response and escalation tasks and updates runbooks and procedures as needed
  • Compiles statistics and contributes to the improvement and creation of playbooks
  • Uses public cyber security resources (e.g. sites/blogs/podcasts) to stay up to date with latest news, threats, and security analysis tools
  • Participates in on-call rotation
  • Other duties as required


Qualifications, Knowledge, Skills and Abilities:

Education

  • High School Diploma or GED, required
  • Bachelor’s Degree in Information Technology, Cybersecurity, or Computer Science, preferred

Experience

  • Three (3) or more years of experience in infosec, cybersecurity, system or networking, required
  • Three (3) or more years of experience of network protocols, configurations, or IT operations, required
  • Two (2) or more years of experience within cloud technologies such as Azure, Azure Stack Azure Backups, AWS or similar cloud experience, preferred
  • Two (2) or more years with EDR platform or SIEM Platform, preferred
  • Experience with help desk ticketing systems and service desk management tools, preferred

License(s)/Certification(s)

  • Microsoft SC-900, 200, 300 preferred
  • Any IT security certifications, preferred

Software

  • Experience with four (4) or more of the following, required:
    • Microsoft Sentinel
    • Information Security tools & packet analyses tools (e.g. CB, Wireshark)
    • Intrusion Detection (e.g. IDS/IPS tools)
    • Firewall troubleshooting 
    • Strong Windows and Linux 
    • Internet Protocols and Services (e.g. TCP/IP, FTP, HTTPS, SSH)
    • Log analysis/ Windows event analysis
    • Network and Host basic forensics
    • EDR solutions
    • Troubleshooting and root cause analyses

Other Knowledge, Skills, & Abilities

  • Strong verbal and written communication skills
  • Excellent interpersonal and customer relationship skills
  • Ability to work in a deadline-driven environment while handling multiple projects/tasks simultaneously with a focus on details
  • Ability to react quickly, decisively and deliberately in high-stress, high-impact situations
  • Ability to multi-task while working independently or within a group environment
  • Ability to work well under pressure while dealing with unexpected problems in a professional manner 
  • Ability to discuss technology and effectively communicate technical issues with all audiences.
  • Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette
     

KEYWORDS: SOC, Networking, Security, Intrusion Detection, Windows, Linux, Internet Protocol, Network Infrastructure, Host and Network Based Forensics, Antivirus Solutions, Troubleshooting, EDR Platform, SIEM Platform, Cyber Security, Cyber, Security Operations Center.

Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world. 

At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.  BDO professionals provide assurance, tax and advisory services for a diverse range of clients across the U.S. and in over 160 countries through our global organization.

BDO is the first large accounting and advisory organization to implement an Employee Stock Ownership Plan (ESOP). A qualified retirement plan, the ESOP offers participants a stake in the firm’s success through beneficial ownership and a unique opportunity to enhance their financial well-being. The ESOP stands as a compelling addition to our comprehensive compensation and Total Rewards benefits* offerings. The annual allocation to the ESOP is fully funded by BDO through investments in company stock and grants employees the chance to grow their wealth over time as their shares vest and grow in value with the firm’s success, with no employee contributions. 

We are committed to delivering exceptional experiences to middle market leaders by sharing insight-driven perspectives, helping companies take business as usual to better than usual. With industry knowledge and experience, a breadth and depth of resources, and unwavering commitment to quality, we pride ourselves on:

  • Welcoming diverse perspectives and understanding the experience of our professionals and clients
  • Empowering team members to explore their full potential
  • Our talented team who brings varying skills, knowledge and experience to proactively help our clients navigate an expanding array of complex challenges and opportunities
  • Celebrating ingenuity and innovation to transform our business and help our clients transform theirs
  • Focus on resilience and sustainability to positively impact our people, clients, and communities
  • BDO Total Rewards that encompass so much more than traditional “benefits.”  Click here to find out more!

*Benefits may be subject to eligibility requirements.

Equal Opportunity Employer, including disability/vets

Click here to find out more!

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  13  7  0

Tags: Analytics Antivirus AWS Azure Cloud Computer Science EDR Firewalls Forensics IDS Intrusion detection IPS Linux Log analysis Monitoring Security analysis Sentinel SIEM SOC SSH TCP/IP Windows

Perks/benefits: Career development Startup environment Team events

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.