Security Operations Center (SOC) Analyst, Journeyman
Tasks
- Analyze IDS IPS alerts
- Analyze network flows
- Author tune detection content
- Conduct risk assessments for access requests
- Contribute to detection engineering backlog
- Coordinate detection logic tuning with engineering
- Correlate SIEM logs
- Develop countermeasure recommendations
- Document investigation steps
- Execute log forensics analysis
- Investigate suspected compromises
- Maintain case evidence and tickets
- Perform threat intelligence analysis
- Reconstruct incident timelines
- Triage EDR endpoint telemetry
- Tune IDS/IPS signatures
- Tune SIEM rules
- Update SOC playbooks
- Validate detections
- Validate indicators of compromise
- Write incident summaries
Perks/Benefits
- N/A
Skills/Tech-stack
Detection engineering | Detection rules | EDR | Endpoint telemetry | Flow analysis | IDS | IPS | Incident Response | Indicator of Compromise | Log Forensics | Network flow | Network flow analysis | Risk Assessment | SIEM | SOAR | Signature tuning | Threat Intelligence | Threat hunting
Education
Related jobs
-
Security Solutions Consultant - AI Security USD 130K-145KAI RMF | AI Security | AI/ML | API Security | AWS401k plan with company matching | Employee assistance program | Employee discount program | Health, dental, and vision care | HolidaysSenior-level Full TimeRemote - Nationwide, United States R5h ago
-
Cybersecurity Principles | Cybersecurity frameworks | Intelligence Analysis | Risk Management | Security recommendationsMentorship | Onsite 5 days per week | Professional developmentSenior-level Full TimeBaltimore, Maryland, United States9h ago
-
Cloud Security | Data Security | Hybrid Cloud | Risk Management | Secure ArchitectureMentorship | Onsite work 5 days per week | Professional developmentSenior-level Full TimeLas Vegas, Nevada, United States9h ago
-
Technical Security and Signals Countermeasures Analyst USD 116K-194KCI Policies | Cybersecurity | DODD 814001 | Intelligence Analysis | Intelligence lifecycleSenior-level Full TimeUSA-VA-Springfield9h ago
-
Assoc. Cybersecurity Analyst USD 70K-80K800-53 | CIS Critical Security Controls | Compliance Management | Critical Security Controls | CybersecurityMid-level Full TimeNashville, TN, United States10h ago
-
Security Engineer, National Security USD 174K-252KCloud Security | Computer Security | Design review | Detection Systems | Forensic analysisMid-level Full TimeReston, VA, USA11h ago
-
Engineering Analyst, Trust and Safety Account Security USD 132K-189KAutomation | Cause analysis | Cybersecurity | Data Analysis | Incident ResponseRotating on call coverage | Weekend and holiday coverageMid-level Full TimeKirkland, WA, USA11h ago
-
Tier III Analyst/Threat Hunter USD 110K-166KCause analysis | Detection and Response | Detection engineering | Digital forensics | Endpoint Detection and ResponseComprehensive health coverage | Federal holidays off | Flexible PTO | Professional development support | Remote workSenior-level Full TimeWashington, D.C. Metro - hybrid/remote R21h ago
-
Security Engineer - Azure Government USD 180K-440KAKS | ARM | Access Control | Application Firewall | Azure CLI401k plan | Dental insurance | Disability insurance | Employee discounts | Health insuranceMid-level Full TimePalo Alto, CA; Washington, D.C.21h ago
-
800-171 | 800-53 | AWS | Azure | CMMC401k | Dental insurance | HRA/HSA options | Health insurance | Paid HolidaysSenior-level Full TimeDenver, CO or Long Beach, CA21h ago
-
Senior Manager, Threat Intel Analyst USD 107K-184KActor Profiling | Analytic techniques | Cyber Kill Chain | Cyber Threat | Cyber threat analysisSenior-level Full TimeAustin (Oakhill, Office), United States22h ago
-
Staff Auditor - Digital Technology & Cybersecurity USD 104K-174KCOBIT | Control gap assessment | Cybersecurity Framework | Gap assessment | Governance401k matching | Dental insurance | Disability benefits | Employee assistance program | Health CoachSenior-level Full TimeAtlanta, United States22h ago
-
Principal IT Risk Management Analyst USD 119K-178KArtificial Intelligence | Business Continuity | Business Continuity Planning | CIS Controls | Cloud Platforms401k retirement plan | Dental insurance | Disability insurance | Employee stock purchase plan | Health insuranceSenior-level Full TimeRemote, United States R22h ago
-
Senior Director - Cyber Engineering Cloud Security USD 121K-186KAPI Security | Access Management | CASB | CIEM | CNAPPSenior-level Full TimeUSA - PA - Remote, United … R22h ago
-
Cybersecurity Analyst - PII Compliance (Remote) USD 80K-130KAudit Readiness | CCPA | CPRA | Compliance Management | CybersecurityLow travel requirement | Remote workNone Full TimeGEORGIA - VIRTUAL - GA01, United … R22h ago
-
Senior-level Full TimeUSA, DC, Washington (400 7th St …22h ago
-
Director, Security Engineering USD 144K-200KAI Security | Application Firewall | Application Security | Application Security Testing | CI/CD401k match | Certification support | Dental insurance | Discount programs | Flexible time offExecutive-level Full TimeHeadquarters, Winston Salem, NC, United States22h ago
-
Director IT and Cyber Security USD 215K-275K21 CFR Part 11 | Access Control | Access Management | Active Directory | CFR Part 11Executive-level Full TimeSalt Lake City, UT1d ago
-
AMD Private-New York-Vice President-Security Engineering USD 130K-250K800-53 | AI Governance | AWS | Azure | Breach notificationExecutive-level Full TimeNew York, New York, United States1d ago
-
Cyber Security Specialist USD 120K-140KApplication Firewall | Audit Support | Burp Suite | Cloud Security | Cloudflare401k match | Bereavement leave | Continuous learning | Dental insurance | Employee assistance programMid-level Full TimeMINNEAPOLIS, MN, United States1d ago
-
Application Security | Automotive Cybersecurity | Cloud Security | Control Systems | CybersecurityAdoption and surrogacy expense reimbursement | Community service time | Employee resource groups | Fertility treatment benefits | Flexible family care daysMid-level Full TimeUnited States R1d ago
-
Cybersecurity Analyst (Intrusion Analyst) USD 100K-200KC# | C++ | Computer Network Defense | Computer network | Incident Response401k company match | Dental insurance | Employer Paid Long-term Disability | Employer Paid Short-term Disability | Employer-paid life insuranceSenior-level Full TimeSan Antonio, TX, US1d ago
-
800-53 | CIA triad | CRM | Cyber Threat | Cyber Threat IntelligenceCompany-sponsored team events | Flexible time off | Remote work | Wellness resourcesSenior-level Full TimeNew York, New York; Newark, New … R1d ago
-
Cloud Security/Penetration Test Engineer USD 130K-185KASVS | Amazon Web Services | Application Firewalls | Bash | CMMC401k plan | Appspace Quiet Fridays | Disability coverage | Employer-paid life insurance | Flexible work schedulesSenior-level Full TimeDallas, Texas, United States Remote R1d ago
-
Security Automation Engineer USD 130K-184KAPI | Ansible | ArcSight | Axiom Cyber | Bash401k match | Accident insurance | Critical illness insurance | Discretionary time off program | Hospital indemnity insuranceSenior-level Full TimePortland, OR1d ago