Tier II SOC Analyst

We are looking for a Tier II SOC Analyst to support the Security Operations Center and perform the duties outlined below. These responsibilities are crucial in maintaining an organization's cybersecurity posture and require a combination of technical skills, analytical thinking, and effective communication. If you're considering a career as a SOC analyst, it's important to be detail-oriented, ethical, and curious, with a solid understanding of IT networking & security principles.

The ideal candidate must have experience working in a network security environment, such as a Security Operations Center (SOC), and have an understanding of common security tools, such as intrusion detection systems and SIEM software.

Key Responsibilities Provide threat analysis and security logs for security devices Gather detailed information necessary to assess the scope of cyberattacks and respond to severe attacks or those with high business impact Analyze and respond to hardware and software weaknesses and vulnerabilities Investigate, document, and report security problems and emerging security trends Coordinate with other analysts and departments regarding system and network security when needed Create, implement, and maintain security protocols and controls, including the protection of digital files and data against unauthorized access Maintain data and monitor security access Perform risk analyses, vulnerability testing, and security assessments Perform security audits (internal and external) Anticipate threats, incidents, and alerts to help prevent the likelihood of them occurring Evaluating incidents identified by Tier I analysts and using threat intelligence, such as updated rules and indicators of compromise (IOCs), to pinpoint affected systems and the extent of the attack Analyze running processes and configurations on affected systems to understand and mitigate threats Manage network intrusion detection systems Analyze all security breaches to determine the root causes Design and implement strategies to contain and recover from security incidents Work with other tiers and IT departments to manage the extended network and respond to threats and events Make recommendations of countermeasures and install approved tools Coordinate security plans with relevant vendors

LOCATION:

Stennis, Mississippi. This position is 100% on-site. HOURS:

This position is predominantly overnight, 12-hour shifts, occasionally rotating.

Requirements Bachelor’s Degree in computer science or another relevant field At least 2 years of related experience Preferred certifications : Security+, CEH, GIAC, CASP, CISSP Familiarity with Splunk – such as doing and initiating searches, investigating events/incidents, etc. Security Information and Event Management (SIEM) SQL TCP/IP, computer networking, routing and switching C, C++, C#, Java, or PHP programming languages IDS/IPS, penetration and vulnerability testing Firewall and intrusion detection/prevention protocols System administration skills on Windows, Macs, and Linux/Unix platforms Network protocols and packet analysis tools Anti-virus and anti-malware

Security & Citizenship Requirements Ability to obtain a DHS Public Trust Security Clearance (called “Entry on Duty”) US Citizenship

required

– personnel with Permanent Resident (Green Cards) or Work Visas are not eligible for this position

#J-18808-Ljbffr