Lead SOC Analyst

***** U.S Citizenship: Required with NO Dual Citizenship *****

***** Must live near or be willing to relocate to Austin, TX *****

About the role you are considering:

In the SOC Supervisor role, you'll be entrusted to deliver managed security services to some of the most recognized brands in the world, protecting them from threats that actually matter to their business...24x7x365. The SOC Supervisor will be tasked with assisting the SOC Manager in leading a team of cybersecurity analysts, providing guidance related to investigations, ensuring operations run smoothly, and interfacing directly with our clients.

Your Experience:

· Bachelor's Degree or higher preferred

· 5 Years in a 24x7 security operations environment, previous supervisory/management experience preferred

· Hold or work towards attaining GCIH, CySA , GIAC Certs. This is not a requirement to take on the role but may be an objective set forth by SOC Leadership.

· Demonstrated experience with event detection, triage, analysis, and incident response including:Investigative Process,Remediation Techniques,Isolating hosts,Pulling files from hosts,Conducting full scans on hosts,Root Cause Analysis,End user management,FW Blocks etc.,Log Analysis,Host-based Analysis,Network Traffic Analysis,Email Analysis,OSINT,Cyber Kill Chain,MITRE

· Experience with various SIEM platforms, such as Devo, Elastic, Splunk, QRadar, Sentinel, etc.

· Experience with various Endpoint protection platforms, such as MS Defender, CrowdStrike, Tanium, Cybereason, etc.

· Experience with various ticketing systems, such as ServiceNow, Archer, Jira, etc.

· Experience with various SOAR platforms, such as Palo Alto's XSOAR, Swimlane, Siemplify, etc.

· Knowledgeable regarding computing concepts, such as networking, scripting, etc.

· Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks.

· Experience in computer intrusion analysis and incident response.

· Computer network surveillance/monitoring.

· Knowledge and understanding of network protocols, network devices, multiple operating systems, and secure architectures.

Your Responsibilities:

· Support with investigations from any/all monitoring platforms as they occur.

· This includes SIEMs, Endpoint tools, IDS, etc.

· Function as an escalation point for investigations from all levels of SOC analysts requiring assistance/further investigation.

· Working with analysts (as needed) to investigate and triage security incidents for which they may be unfamiliar and require assistance.

· Assisting L1/L2/L3 analysts with investigations under increased examination by the customer - such as those that are returned by the customer or being presented.

· Play a pivotal role contributing to quality assurance of Analyst write-ups and investigations. Provide teach backs, spot-checks, and guidance to improve investigations for future escalations.

· Function as an SME for one or more technology areas supported by the SOC.

· This may include internal technologies used for monitoring customers or customer-owned platforms.

· The SME is responsible for keeping all relevant procedural documentation up to date.

· The SME is responsible for performing training on supported platforms (as needed).

· The SME is responsible for interfacing with internal and customer teams (as needed) to support the technology for monitoring purposes. This may include being involved in projects objectives.

· Demonstrate the ability to adapt to a broad array of analytical tools and methodologies with exceptional proficiency. Additionally, exhibit a unique talent for providing comprehensive guidance and mentorship to analysts, ensuring excellence during investigations, and training sessions, thereby setting a gold standard within our team.

· Internal Status, Meetings, Etc.

· Weekly status reports are not currently required by Supervisors but may be in the future.

· Task tracking of objectives defined by SOC Leadership may be required.

· Participation and/or ownership of internal analyst meetings may be required (as needed).

About Capgemini

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to

engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2024 global revenues of 22.1 billion.

Get the future you want | www.capgemini.com

Disclaimer

Capgemini is an Equal Opportunity Employer encouraging inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.

This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.

Please be aware that Capgemini may capture your image (video or screenshot) during the interview process and that image may be used for verification, including during the hiring and onboarding process.

Click the following link for more information on your rights as an Applicant http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law

Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Job: Infrastructure

Organization: CIS US MS

Title: Lead SOC Analyst

Location: NJ-Bridgewater

Requisition ID: 081984