Tier 2 Senior Cyber Security Analyst

Santa Ana, CA | Onsite

Our client seeks a Tier 2 Senior Cyber Security Analyst to support a 24x7x365 Security Operations Center. The analyst will create, tune, monitor, and investigate SIEM alerts and support incident response, digital forensics, data loss prevention, and eDiscovery. This role is onsite five days per week in Santa Ana during the interim. A future transition to hybrid may be considered based on SOC needs.

Due to client requirements, applicants must be willing and able to work on a W2 basis. For our W2 consultants, we offer a comprehensive benefits package that includes Medical, Dental, and Vision coverage, a 401(k) with company matching, and life insurance.

Rate: $30-$36/hour W2

Responsibilities

• Proactively monitor security events for networks and systems.
• Mentor and guide Tier 1 SOC Analysts.
• Identify, investigate, and report on potential security incidents.
• Support risk and vulnerability assessment at the network, system, and application level.
• Support cyber metrics development, maintenance, and reporting.
• Support cyber threat intelligence development and reporting.
• Identify, develop, and implement automation tasks for routine activities.
• Develop, recommend, and implement security controls and operational risk mitigations; assist in security awareness programs.
• Research, evaluate, and recommend new security tools, techniques, and technologies aligned to IT security strategy.
• Use COTS/GOTS and custom tools and procedures to scan, identify, contain, mitigate, and remediate vulnerabilities and intrusions.
• Assist in implementing required government policy such as NIST and recommend process tailoring.
• Perform analyses to validate security requirements and recommend additional safeguards.
• Conduct periodic audit reviews and track corrective actions to closure.
• Provide routine briefings to senior staff.
• Workday shift, typically 8 AM to 5 PM, with weekend days included; shift rotation may occur with reasonable notice and holiday coverage as needed.

Experience Requirements

• Professional experience with programming languages such as Python, C , and JavaScript.
• Hands-on experience with SIEM technologies; Microsoft Sentinel experience preferred though other SIEM tools are acceptable.
• Experience with IDS/IPS, firewalls, and anti-virus/anti-malware technologies.
• Incident response experience with exposure to and partial or full ownership of security incidents.
• Knowledge of the incident response lifecycle: Identify, Protect, Detect, Respond, Recover.
• Vulnerability management experience.
• Adherence to SOC standard operating procedures.
• Ability to handle multiple tasks and communicate with stakeholders.
• Ability to pass County Live Scan, Child Support Services background, and County Probation background checks, and to pass a drug screen.

Education Requirements

A bachelor’s degree in a related field and 2 years of related experience required. 4 years of related experience is highly preferred. Additional experience may substitute for education. Preferred certifications include CySA , Security , GIAC Security Essentials (GSEC), or similar industry certifications.