Job Title: Security Operations Analyst

Contract Term: 6 months (Possible extension).

Work Arrangement: Onsite (Must means of transportation like vehicle to reach the office as onsite role)

Work Location: Audubon, PA

Support required: 24x7x365 support mostly Night shifts.

Position Overview

• SOC Operations provides the opportunity to work in dedicated network defense environments with focus on threat identification, incident response, cyber threat intelligence infusion, and mitigations to ensure defensive resiliency. The primary function of the SOC Analyst is to defend corporate networks from advanced and targeted attacks by providing threat monitoring and cyber defense services.
• You will work with a dedicated SOC Operations team that provides 24 x7 x365 support—with a focus on threat identification, incident response, cyber threat intelligence infusion, and mitigations—to ensure defensive resiliency. Daily activities will include analysis of network logs, processing of mitigations, determination and escalation of threat, as well as maintaining the defensive state of detection and alerting capabilities. In this role, you will have the opportunity to work collaboratively in a team environment with various touchpoints and handoffs.

Required Qualifications:

• Willing and able to commute and work on site at client location in greater Philadelphia area.
• Ability to work flexible schedules including shift work, weekends, and holidays.
• Experience working in a Security Operations Center or similar environment providing threat monitoring, intrusion detection, analysis, threat determination, mitigations processing and tracking.
• Familiarity with enterprise network topology and architecture.
• Experience triaging threats derived from various intakes to include security technology alerts, user reported tickets, and other internal teams across security, technology, and business units.
• Experience working with various network and system security technologies to include SIEM, data analytics platforms, end-point tools, network technologies and appliances, etc.
• Experience working across organizational lines of business to implement mitigations, remediations, and countermeasures resulting from cyber threat intrusions.
• Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them.
• Previous experience working with and documenting analysis results in a knowledge, intelligence, and/or case management system.
• Knowledge of industry recognized analysis frameworks (Diamond Model, Kill Chain, NIST Incident Response, etc.).
• Strong verbal and written communication with experience briefing corporate executives and technical professionals.
• Bachelor’s Degree and/or equivalent work experience.

Desired Qualifications:

• Relevant certifications (Security , CISSP, GCIA, GCIH, GISF, GCED, GMON, etc.).
• Previous experience working in IT Operations or Network Operations support.
• Hands on experience working with Incident Response and Cyber Threat Intelligence functions.
• Previous experience working with analysis techniques, identifying indicators of compromise, threat hunting, and identification of intrusions and potential incidents.
• Previous experience working with network tools and technologies such as firewall (FW), proxies, IPS/IDS devices, full packet capture (FPC), and email platforms.
• Bachelor’s Degree or higher.