SOC Analyst - Intermediate - remote

Job Description

OUR GOAL :

Treat our consultants and clients the way we would like

others to treat us!Interested in joining our team? Check out the

opportunity below and apply today!

Client is seeking a SOC Analyst – Intermediate Level for a remote

contract opportunity. Under the general direction of the management

team and senior staff, Security Operations Analyst

– Intermediate supports the Information Assurance

Services efforts to develop secure systems and

networks through the use of automated tools, execution of

security processes and procedures, and reporting.

Contract Duration

: 12-months (2,080 hours) Full-time. 40 hours each week. 11

pm-7 am EST shift (starting Sundays at 11 pm)

Location / Time Zone : Fully Remote.

EST.

This position

will be responsible for triaging security alerts

generated by the SIEM and other detection applications

while determining whether any of the security

alerts contain an active attack then

taking appropriate steps to mitigate the

attack.

Job

Responsibilities :

Provide service to IT client community,

patients, families and visitors, while protecting the

integrity and confidentiality of all data and information through

physical and electronic measures.

Monitor and investigate security alerts to detect malicious

activity that originate from the SIEM, NGFW, EDR, NGAV,

etc.

Follow incident specific playbooks

and procedures documented by SOC leadership while investigating and

responding to malicious activity.

Maintain accurate notes in the case

management system

Proactively identify and remediate threats occurring in

the environment by demonstrating the ability to hunt in

SIEM and EDR solutions.

Provide on-call support at designated times in accordance

with the policies and procedures of the Health

System.

Collaborate with the team and

answer any questions that other analysts may

have.

Assist in the training of new

team members

Assist in

investigating alerts escalated by associate level

staff members

Work independently to

investigate security incidents and alerts

Job

Requirements :

Typically has a 4-year academic degree and 2+ years of

information security or equivalent practical work

experience.

Demonstrates and applies

thorough understanding of information technology tools, best

practices, and concepts.

Completes

on-going training on-the-job, through courses,

self-study, certifications and / or advanced degrees

to maintain and enhance technical and business

capabilities.

Maintains current

knowledge of security techniques and technologies and applies that

knowledge to mitigate risk.

Participates in

an On-Call Team rotation.

Previous experience with some of the following security

technologies : Security information and event management (SIEM),

Endpoint Detection and Response (EDR), Anti-Virus, IDS / IPS, and

NGFW solutions.

Knowledge of tactics

attackers are using while continuing to monitor for new

tactics and procedures being utilized.

Licensure / Certification :

CompTIA Network+ and Security+

certifications are preferred

Reference :  1044609

Don’t meet every single requirement? Studies have shown

that women and people of color are less likely to apply to jobs

unless they meet every qualification. At Revel IT, we are dedicated

to building a diverse, inclusive, and authentic workplace, so if

you’re excited about this role, but your experience doesn’t align

perfectly with every qualification in the description, we encourage

you to apply anyway. You might be the right candidate for this or

our other open roles!

Revel IT is an

Equal Opportunity Employer. Revel IT does not discriminate on the

basis of race, religion, color, sex, gender identity, sexual

orientation, age, non-disqualifying physical or mental disability,

national origin, veteran status or any other basis covered by

appropriate law. All employment is decided on the basis of

qualifications, merit, and business need.

#gdr4900

Job ID : 1044609