14 Feb
Mid-Level SOC Security Analyst | 219826
Vacancy expired!
- First Line of Defense / First Line of Incident Investigation
- Assist IT Security Leaders with Continual Development / Refinement of IT Security Policies
- Provide Critical Support to IT Security Programs - Communicate Security Policies / Programs / Processes
- Deliver Occasional Training / Presentations to IT Staff Focused on IT Security Topics - Incident Response, etc.
- Provide Critical Support to Projects - Ensure Projects Comply with Security Requirements
- Assist IT Compliance Team in the Evaluation of Control Testing
- Point of Escalation for Discovered Vulnerabilities within the Infrastructure - Provide Recommendations for Improvement, etc.
- Coordinate / Execute Penetration Testing Scans
- Read / Understand System / OS / Application Files
- Perform Risk Assessments / Vulnerability Management / Penetration Testing for UNIX / Linx / MAC / Windows Systems / Web Applications, etc.
- Working within a Heterogeneous Computing Environment Spanning Physical / Virtual Data Centers
- Work with DevOps / Software Engineering Teams to Identify / Fix Security Flaws / Vulnerabilities
- Detect / Investigate / Recover from Security Incidents - Assist in Incident Response Plans / Root Cause Analysis
- Analyze Potential Impact of New Threats / Exploits - Communicate Risks to Relevant Business Units
- Technical Knowledge / Understanding / Exposure - Internet Protocols / Networking / TCP/IP / AWS / Azure / SaaS Applications / IDS / IPS / VPN / WAF / DLP / Anti-Virus / Anti-Malware / SEIM / Vulnerability Scanners / Web Proxies / Firewalls / MFA / Key Management, etc.
- IT SOC Security Analyst (2+ years) - Network Ops / Engineering Components / Infrastructure
- Perform Control Reviews on Systems Development / Operation / Programming / Control / Security Procedures
- Document Incidents / Technical Writing / Project Documentation
- Active Directory Support / Troubleshooting (basic-to-intermediate)
- Auditing Concepts / Principles (knowledge) - SOX / PCI, etc.
- Certifications - Security+ / CCISP, etc.
- Computer Controls / Logical Access Controls / Data Center Physical Security Controls / Ops Controls
- Disaster Recovery Planning
- SOX Section 404 (understanding)
- Computer Systems Development / Programming (understanding)
- Oracle User Administration (knowledge / experience)
- General Accounting Principles (knowledge)
- ManageEngine AD AuditPlus / ServiceDesk Plus
- Security Concepts / Best Practices / Procedures (familiarity)
Vacancy expired!