Logo of Huzzle

SOC Analyst I

  • Job
    Full-time
    Junior Level
  • Software Engineering
    IT & Cybersecurity
  • Bridgeport
    Remote

AI generated summary

  • You must be a motivated US citizen or permanent resident with strong communication skills, data analysis ability, and knowledge of security concepts and networking fundamentals. Experience in security roles, familiarity with SIEM tools, scripting, and cybersecurity trends is preferred.
  • You will triage security events, assist in incident response, monitor emerging threats, manage security tools, document procedures, and report metrics for client security initiatives.

Requirements

  • Highly motivated to work in information security
  • Candidate must be a US citizen / permanent resident.
  • Customer-oriented & professional.
  • Strong verbal and written communication skills, fluent in English.
  • Ability to understand and correlate data from multiple sources, not limited to user authentication events, windows security event logs, Syslog, NetFlow/PCAP data, DHCP logs, DNS logs, intrusion detection alerts, proxy logs, packet captures, and firewall events.
  • Knowledge of various security methodologies and processes, and technical security solutions a plus.
  • Understanding how both Windows, Linux, and network platforms are compromised is a plus.
  • Experience as a Security/Network Administrator or equivalent knowledge. Previous Security Operations Center (SOC) experience is a plus.
  • Experience with Security Information and Event Management (SIEM) tools is a plus.
  • Regular expression creation experience to support dynamic security event analysis.
  • Solid understanding of IP networking fundamentals, including IPv4, TCP/IP, LAN/WAN design theory, static and dynamic routing protocols, NAT, ACLs, etc.
  • Solid Understanding of TCP/IP, the OSI Model, and underlying Protocols.
  • Scripting language skills in Python or PowerShell are a plus.
  • Understanding of cyber forensics concepts including malware, hunt, etc. a plus.
  • Understanding how to interpret vulnerability and penetration scan results is a plus.
  • Configuration and knowledge of design and implementation concepts of firewall, VPN, IPS, vulnerability management platforms, and other security technologies is desirable
  • Bachelor’s degree in Information Technology or equivalent experience preferred; background will be considered instead of formal education.
  • Competency with Microsoft Operating Systems, including server and workstation and AD engineering and administration capabilities, is desirable
  • Basic knowledge of Linux operating systems (command line and GUI) is a plus
  • Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies

Responsibilities

  • Initial triage of security events using established procedures, tools, and monitoring platforms including, but not limited to:
  • Firewalls and network devices
  • Servers and workstations
  • Web proxies
  • Intrusion detection and prevention systems (IDS/IPS)
  • Anti-malware systems
  • Security Incident and Event Management systems (SIEM)
  • Data Loss Prevention systems (DLP)
  • Advanced Endpoint Detection and Response systems (EDR)
  • External communications from outside entities, users, phone calls, and emails.
  • Assist senior members of the SOC with analyzing and responding to potential security incidents
  • Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities, malware, and other threats that have the potential to impact our client organizations.
  • Document threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs).
  • Manage the Security monitoring tools, and set up dashboards and alerts.
  • Develop and maintain technical documentation and Standard Operating Procedures (SOP).
  • Conduct security research and intelligence gathering on emerging threats and exploits.
  • Participate in shift transition calls to ensure all open cases and tasks are properly managed and addressed.
  • Periodic reporting of metrics and corresponding analysis for client review and strategic information security program adjustments and planning.
  • Maintenance and management of various security technology platforms.

FAQs

Is this a remote position?

Yes, this is a remote position.

What is the salary range for the SOC Analyst I position?

The annual income for this position ranges from $58K to $68K.

Do I need a work permit to apply for this position?

Yes, a valid work permit is necessary to work in the US or Canada.

What experience is required for this role?

A minimum of 1+ year of experience in information security or a related field is required.

Are there any specific qualifications needed?

Candidates are expected to be US citizens or permanent residents, possess strong communication skills, and have a motivation to work in information security.

Will I need to work with security monitoring tools?

Yes, you will manage security monitoring tools, set up dashboards, and configure alerts.

Is previous SOC experience necessary?

Previous Security Operations Center (SOC) experience is a plus but not strictly necessary.

What kind of technical skills are preferred for the candidate?

Skills in security methodologies, understanding of various operating systems (Windows and Linux), and experience with SIEM tools are preferred.

Is knowledge of scripting languages beneficial for this position?

Yes, experience with scripting languages such as Python or PowerShell is considered a plus.

What is the work environment like for this role?

The work environment is collaborative and focused on maintaining security and incident response in a remote setting.

Will there be any opportunities for growth in this role?

Yes, there are opportunities for growth, including the development of skills in threat analysis, security technologies, and incident response.

Are there any specific tools that I will be expected to use?

You will use various established procedures, tools, and platforms such as firewalls, IDS/IPS, SIEM, DLP, EDR systems, among others.

Learn Coding & Build software collaboratively with the power of AI, on any device, without spending a second on setup!

Technology
Industry
11-50
Employees

Mission & Purpose

Skip setup, soar through code! Learn & build together, on-demand, with AI your co-pilot. Any device, endless possibilities. Careers taking flight? Visit our page! But wait, there's more! You're not alone on this coding quest. Our trusty AI companion will guide you, suggest code snippets like secret spells, and catch errors before they turn into dark side bugs. Collaborate with fellow code warriors in real-time, sharing wisdom and building epic software empires together. From simple droids to full-blown Death Stars, the possibilities are endless. Web apps, mobile games, anything your code-fueled imagination can conjure. And when your masterpiece is ready, deploy it with a single click, sharing your creation with the galaxy. Level up your skills, join a thriving community of code knights, and land your dream tech job. Our career page is like a lightsaber to your resume, cutting through obstacles and illuminating your path to coding glory. So grab your device, choose your coding destiny, and join the revolution