SOC Threat Hunt
2 weeks ago
This program requires US Citizenship
Remote
The Role:
● Understand and utilize Threat Intelligence in the creation, planning, and leading of Threat Hunt actions.
● Collaborate with cross-functional teams including network, endpoint, security, and IT operations to understand and translate customer requirements and expectations into actionable plans.
● Develop and maintain detailed documentation of SOC design, architecture, and processes for client reference.
● Provide training and support to SOC analysts and other team members on the use of tools, processes, and procedures.
● Assist in the creation of incident response plans, threat management processes, and security policies in alignment with client requirements.
● Stay up-to-date with the latest cybersecurity trends, threat intelligence, and best practices to ensure SOC is well equipped to response to emerging threats.
● Participate in continuous improvement initiatives to enhance the effectiveness and efficiency of the SOC.
● Assist in incident response actions when required.
● Strong analytical and problem-solving skills with the ability to think critically and adapt to evolving situations.
● Excellent communication skills with the ability to effectively convey technical information to both technical and non-technical audiences.
What Sets You Apart:
● A Bachelor's degree plus minimum of 4 years prior relevant experience.
● Ability to obtain public trust clearance.
● In-depth knowledge of MS Sentinel.
● Experience configuring log sources, normalizing data, and managing threat intelligence feeds.
● Strong understanding of threat detection, incident response, and SOAR concepts.
● Excellent communication and interpersonal skills to effectively collaborate with stakeholders.
● Ability to work independently and as part of a team.
Preferred:
● Understanding of M-21-31 requirements, NIST Cybersecurity Framework, CISA Incident and Vulnerability Playbooks, and CISA BOD requirements such as BOD 22-01.
● Understanding of a variety of both network and end point defenses.
● Experience developing Threat Hunt action planning and Incident Response.
● Experience configuring UEBA to enhance the SOC’s ability to identify anomalous behaviors.
● Experience using python and AI/ML frameworks for cyber analytics.
● Experience establishing effective SOC metrics, alarms, reports and dashboards.
● Experience with security aspects of M365, Azure, the use of ServiceNow and ServiceNow workflows, and CISA CDM tools.
● Relevant certifications such as Microsoft SC-200.
ABBTECH is an EOE/Minorities/Women/Disabled Individuals/Veterans
-
Principal SOC Analyst
5 days ago
Atlanta, Georgia, United States Truist Full timeThe position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.Need...
-
SOC Analyst
2 weeks ago
Atlanta, Georgia, United States SAIC Career Site Full timeDescription SAIC is seeking a SOC Analyst in Atlanta, GA. This is support the Department of Health and Human Services (HHS) cybersecurity mission to ensure HHS can actively protect the vital health information with which it is entrusted, respond to existing and emerging cybersecurity threats, and continue to enhance the program to ensure HHS has the...
-
SOC Analyst
7 days ago
Atlanta, Georgia, United States SAIC Career Site Full timeDescription SAIC is seeking a SOC Analyst in Atlanta, GA. This is support the Department of Health and Human Services (HHS) cybersecurity mission to ensure HHS can actively protect the vital health information with which it is entrusted, respond to existing and emerging cybersecurity threats, and continue to enhance the program to ensure HHS has the...
-
Senior SOC Analyst
2 weeks ago
Atlanta, United States Emergent Professional Resources L.P. (EPR) Full time**Only candidates currently residing in Chicago, IL will be considered for this opportunity**Our Specialty Insurance Client is looking to add a Senior Security (SOC) Analyst to their team here in Downtown Chicago! In this Direct Hire role, you will be responsible for leading and coordinating incident response efforts, investigations, and mentoring junior...
-
Senior SOC Analyst
2 weeks ago
Atlanta, United States Emergent Professional Resources L.P. (EPR) Full time**Only candidates currently residing in Chicago, IL will be considered for this opportunity**Our Specialty Insurance Client is looking to add a Senior Security (SOC) Analyst to their team here in Downtown Chicago! In this Direct Hire role, you will be responsible for leading and coordinating incident response efforts, investigations, and mentoring junior...
-
Cybersecurity Threat Senior Analyst
5 days ago
Atlanta, Georgia, United States Truist Full timeThe position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.Need...
-
SOC Analyst II
2 weeks ago
Atlanta, United States Apex Systems Full timeSOC Analyst II - Remote EST - $45-55/hr - W2 Only *Candidate must be able to work on client's W2 without sponsorship, vendor or employer* As technology continues to advance so does the threat landscape. Attackers are now using more sophisticated tactics to evade security controls. As a result, our team must also continue to advance its capabilities in threat...
-
Senior Threat Hunter
2 weeks ago
Atlanta, United States Motion Recruitment Full timeWe are partnered with a leading healthcare organization dedicated to providing high-quality, affordable healthcare services and improving the overall well-being of families and individuals. They are seeking a skilled and motivated Threat Hunter to join their dynamic cybersecurity team. As a Threat Hunter, you will be responsible for proactively detecting,...
-
Mgr-Information Security
6 days ago
Atlanta, United States Marriott Full timeJob Number 24081565 Job Category Information Technology Location Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States Schedule Full-Time Located Remotely? Y Relocation? N Position Type Management JOB SUMMARY Seeking a proactive manager to lead threat hunting efforts, analyzing security logs and network traffic to...
-
Splunk Content Developer
3 weeks ago
Atlanta, United States Base2 Solutions Full timeThe Splunk Content Developer is responsible for developing, customizing, and configuring Splunk apps and dashboards. The candidate will build and integrate content in a Splunk Core and ES environment and provide technical support to NOC and SOC customers in order to detect, hunt, and mitigate cyber threats. Job Description Support the day-to-day operation...
-
Security Operations Center
1 week ago
Atlanta, United States Gunnison Consulting Group Inc Full timeJob DescriptionJob DescriptionGunnison provides comprehensive cybersecurity support services to the HHS OCIO. We are seeking a motivated and customer-oriented professional to support our Atlanta, GA SOC team.Location: On-site, Atlanta, GADuties and responsibilities include:Collect, analyze, and correlate security events and use discovered data to enable...
-
Splunk SOAR Automation Developer
4 weeks ago
Atlanta, United States TekStream Solutions Full timeSplunk SOAR/Phantom Automation DeveloperLocation: RemoteTekStream is seeking a Splunk resource with experience with Splunk SOAR/Phantom to aid and lead in developing playbooks and implementing integrations as part of the playbook development process. The role will entail working within Splunk SOAR and working as a part of a team developing and maintaining...
-
Splunk SOAR Automation Developer
4 weeks ago
Atlanta, United States TekStream Solutions Full timeSplunk SOAR/Phantom Automation DeveloperLocation: RemoteTekStream is seeking a Splunk resource with experience with Splunk SOAR/Phantom to aid and lead in developing playbooks and implementing integrations as part of the playbook development process. The role will entail working within Splunk SOAR and working as a part of a team developing and maintaining...
-
Cybersecurity Threat Senior Analyst
3 days ago
Atlanta, Georgia, United States Truist Full timeThe position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.Need...
-
Security Threat Detection Architect/Manager
1 month ago
Atlanta, United States Airitos Full timeJob DescriptionJob DescriptionSecurity Threat Detection Engineer ConsultantThis is a remote positionResponsibilities:· Ideate, design, develop, test, monitor, and tune high-quality detections to ensure security analysts have the ability to respond to security threats· Write complete and well-documented alerting and detection strategies to ensure the...
-
Blue Team
4 weeks ago
Atlanta, United States Airitos Full timeSecurity Threat Detection Engineer Consultant This is a remote position Responsibilities: · Ideate, design, develop, test, monitor, and tune high-quality detections to ensure security analysts have the ability to respond to security threats · Write complete and well-documented alerting and detection strategies to ensure the security analysts and incident...
-
Blue Team
2 weeks ago
Atlanta, United States Airitos Full timeSecurity Threat Detection Engineer Consultant This is a remote position Responsibilities: · Ideate, design, develop, test, monitor, and tune high-quality detections to ensure security analysts have the ability to respond to security threats · Write complete and well-documented alerting and detection strategies to ensure the security analysts and incident...
-
Blue Team
4 days ago
Atlanta, United States Airitos Full timeSecurity Threat Detection Engineer Consultant This is a remote position Responsibilities: · Ideate, design, develop, test, monitor, and tune high-quality detections to ensure security analysts have the ability to respond to security threats · Write complete and well-documented alerting and detection strategies to ensure the security analysts and incident...
-
Splunk Content Developer
9 hours ago
Atlanta, United States Base-2 Solutions, LLC Full timeThe Splunk Content Developer is responsible for developing, customizing, and configuring Splunk apps and dashboards. The candidate will build and integrate content in a Splunk Core and ES environment and provide technical support to NOC and SOC customers in order to detect, hunt, and mitigate cyber threats. Job Description Support the day-to-day...
-
Senior Security Engineer
7 days ago
Atlanta, United States Calendly LLC Full timeAbout the team & opportunity What’s so great about working on Calendly’s Security team? We make things possible for our customers through innovation. Why do we need you? Well, we are looking for a Senior Security Engineer who will bring curiosity, technical knowledge and desire to up-level people around you. You will report to the Head of Security...