SOC Analyst

Monitor security alerts and incidents using various security information and event management (SIEM) tools.
Analyze network traffic, logs, and security events to identify potential security threats and vulnerabilities.
Conduct in-depth investigations into security incidents and provide timely and accurate analysis.
Respond to and mitigate security incidents, coordinating with internal and external stakeholders.
Develop and implement incident response plans and procedures.
Document and communicate incident details, actions taken, and recommendations for improvement.
Performs highly specialized review and evaluation of incoming cyber security alerts.
Follows precise analytical paths to determine the nature and extent of problems being reported by tools, emails, etc.
Responsible for evaluating data from multiple platforms to draw conclusions.
Escalate issues which require further investigation to other members of the team.
Develop incident response playbooks
Stay abreast of the latest cybersecurity threats, vulnerabilities, and trends.
Incorporate threat intelligence into the security monitoring and incident response processes.
Security Awareness:
Contribute to the development and delivery of security awareness training programs for employees.
Provide guidance on security best practices to internal teams.
Work closely with cross-functional teams, including IT, operations, and compliance, to ensure a cohesive and secure environment.
Collaborate with external partners and vendors to enhance security posture.
Collaborate with Internal Control Office and Assist with development of organizational security policies and procedures
Requirements
Qualifications:
Associates degree in Cybersecurity, Information Technology, or a related field or 2 years work experience.
Proven experience in a SOC analyst role, with a focus on network security and incident response.
Strong understanding of cybersecurity principles, threat landscape, and attack vectors.
Experience with SIEM tools, intrusion detection/prevention systems, and other security technologies.
Ability to work efficiently with little to no supervision.
Interest in learning the ATM space.
Knowledge of regulatory requirements and standards related to financial services security.
Certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH) are a plus.
Excellent analytical and problem-solving skills.
Strong/effective written and verbal communication skills, with the ability to convey complex security concepts to non-technical stakeholders.

#J-18808-Ljbffr