Security Operations Center(SOC) L3 Analyst(With AWS)

Please note, this role is not able to offer visa transfer or sponsorship now or in the future.

The SOC L2 Analyst position is a valued member of the Information Protection and Risk Management team. The Analyst is part of the SOC (Security Operations Center) team and works closely with other members of the IPRM program to develop and implement a comprehensive approach to the management of security risks.

This role is responsible for working with other Security Operations Center team members in responding to security events according to established policies and best practices.

Job Responsibilities

• First level response for real time security alerts and events
• Assist the Incident Response team in handling security events / incidents
• Perform complex security investigations and root cause analysis
• Data mining through use of SIEM or other data analytics solutions
• Perform phishing investigations and response
• Report generation around security events and metrics
• Ensure that all security events are properly documented/tracked to meet audit and legal requirements
• Develop documentation in support of response processes and/or procedures
• Determine level of event severity and escalate as necessary
  
  

Qualifications

• Azure/AWS security, GCIA, GCIH, or other GIAC certifications preferred
• Practical understanding of network protocols and operating systems
• Broad understanding of security mitigation solutions at all layers
• Minimum of four years information security specific experience
• Bachelor's degree in information systems or equivalent experience
• Ability to analyze large data sets to identify trends/anomalies indicative of malicious activity
• Good understanding of application logic flow
• Understanding or background in code development
• Awareness of the current threat landscape
• Self-driven and motivated with a strong passion for cybersecurity
• Excellent verbal and written communications skills
• Excellent problem solving and troubleshooting skills with a strong attention to detail
• Ability to interact with personnel at all levels across the organization and to comprehend business imperatives
• Ability to thrive in a fast-paced environment and capable of working under pressure
  
  

Preferred

• Hands-on experience in SOAR, including writing playbooks and troubleshooting issues
• Hands-on experience with AWS, including tools like Lambda, ECS, EKS, DynamoDB, S3, EventBridge, or equivalent Azure services
• Familiarity with cloud-based monitoring and security tools for incident response
• Ability to write, test and debug Python applications
• DevOps process experience with tools like Gitlab
• Experience with containerization technologies such as Docker and/or Kubernetes
  
  

Working Arrangements

We strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position at Charlotte NC – 3 days a week ,open to qualified applicants in the United States. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.

The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.

Salary And Other Compensation

The annual salary for this position is depending on experience and other qualifications of the successful candidate.

Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:

• Medical/Dental/Vision/Life Insurance
• Paid holidays plus Paid Time Off
• 401(k) plan and contributions
• Long-term/Short-term Disability
• Paid Parental Leave
• Employee Stock Purchase Plan
  
  

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.