Senior Cybersecurity Analyst

Company Overview
MCNC is a North Carolina non-profit, client-focused technology organization. Founded in 1980, MCNC owns and operates the North Carolina Research and Education Network (NCREN), one of America’s longest-running regional research and education networks. With over 40 years of innovation, MCNC provides protected internet, cybersecurity services, and related technology services. Learn more about what we do and our service portfolio at http://www.mcnc.org.

Position Summary
This is a senior-level position in MCNC’s growing cybersecurity operations team that will focus on SOC development. It requires broad and thorough experience with networking, system administration, cybersecurity concepts, vendor engagement, and documentation. Additionally, it requires experience acting as a subject matter expert (SME), addressing escalations, and knowledge sharing. Direct SOC experience is required. As part of a growing security operations team, you will support MCNC's cybersecurity solutions and clients by acting as a cybersecurity SME and assisting in developing and implementing new processes and technologies to improve MCNC's response capabilities. Additionally, you will provide oversight of our solutions and use them to track and respond to trends across NCREN. If you are currently a SOC analyst and are ready to take the next step in your cybersecurity career, this is an excellent opportunity to do so!

While the work location for this position may be primarily remote, the candidate must be local to NC. No relocation fees will be provided.

Key Responsibilities/Duties

• Act as cybersecurity SME and provide escalation support and vendor engagement for Cybersecurity Analysts.
• Monitor and respond to alerts and events detected and generated by MCNC’s growing portfolio of cybersecurity protection tools. Initial areas of focus will include endpoint protection, vulnerability management, and network security.
• Experience using log management tools, SIEM, and SOAR technologies to extract actionable events and create solutions around them.
• Utilize available tools and information sources to proactively hunt across the MCNC operating environment to detect areas of potential concern related to cybersecurity.
• Research security threats and trends and provide summary reports, from available tools, of threats and trends to NCREN and its clients.
• Create public and private resources and solutions to address security threats
• Ensure that operational security controls are correctly implemented and that they are performing effectively and efficiently on an ongoing basis.
• Respond to inquiries from the MCNC community regarding potential cybersecurity issues.
• Perform security incident response activities, including troubleshooting, triage, containment, recovery, and documentation.
• Collaborate with other MCNC departments, including Enterprise IT, Network Operations, Network Management, and MCNC’s client consulting teams to ensure that actions are appropriate and timely.
• Recommend and implement improvements to existing processes and technologies to improve overall service delivery.
• Engage in threat hunting, SOC playbook creation, and support Cybersecurity Engineering when onboarding new clients.
• Work autonomously with limited oversight from management
• Provide recommendations and guidance around SOC initiatives, workflows, and process improvement
• Support projects or processes and problems that are often complex
• Additional duties as assigned.

• Accomplished SOC Analyst.
• Proficient with networking and network security solutions such as firewalls, web filtering, and DNS filtering services.
• Proficient with Linux/Unix, Mac, and Windows operating systems.
• Proficient with the following cybersecurity areas:
  • Cyber Hygiene
  • Patch Management
  • Endpoint Protection
  • Vulnerability Assessment / Vulnerability Management
  • Security Monitoring / Intelligence gathering and analysis
  • Threat Hunting
  • Threat Modeling
• Excellent written and verbal communication skills. Must be able to communicate effectively with coworkers, management team, MCNC customers, and vendors. Must be able to deliver written material and presentations to technical and non-technical audiences.
• Able to work in a responsible and proactive fashion collaboratively or with minimal direct supervision.
• Comfortable collaborating across department boundaries to establish positive working relationships and drive operational security improvements without direct control of, or supervision of assets.
• Comfortable acting as SME and educator to not only team members but also MCNC clients.
• A willingness to adapt to new solutions as the growing catalog of Vital Cyber offerings evolves and changes over time.
• Must have a valid driver's license and will be required to drive a company vehicle on company business.
• Pre-employment and annual Background, MVR, and Sex Offender checks will be required during your employment with the company.
• This role will be required to adhere to the MCNC Substance Abuse policy, which may include drug/alcohol screening at hire and periodically or randomly during employment.

• Degree in Cybersecurity, Information Technology, Computer Science, or another related field.
• Relevant industry certifications from CompTIA, ISC², SANS, Microsoft, Cisco, etc.
• Public speaking or similar experience.
• Automation, API, and other similar experience.

Disclaimer: The above statements are intended to describe the general nature and level of work performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.

MCNC is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other characteristic protected by law.