Wavestrong
Security SOC Analyst
Wavestrong, San Ramon, California, United States, 94583
Founded in 2001, WaveStrong is an industry leader in enterprise and cloud information security consulting services. We pride ourselves on our best of breed security solutions and services that span a myriad of government, education and business verticals. Our staff is comprised of both certified technical and business professionals who can help you successfully navigate complexities of planning, design, implementation and management of securing data. Our approach is vendor agnostic giving our customers the freedom to choose the best customized security model for their business.RequirementsWe are seeking a motivated and detail-oriented Security SOC Analyst to join our Security Operations Center (SOC) 24x7 team in the San Ramon, CA.Comfortable working a designated rotational shift to support a 24x7 environment to monitor and alert on malware analysis related to the identified security event(s)Manage critical cybersecurity events in a central ticketing system from the time the event is detected through the alerting process.Document investigation results and provide relevant details for final analysis.Experience working with SIEM platforms, preferably Splunk or similar tools like QRadar, ArcSight, or LogRhythm.Nice to have:
Data Loss Prevention (DLP) tools and policies or exposure to Identity and Access Management (IAM) solutions, EDR/MDR, and Firewalls,Provide analysis of Information Security Events and determine true or false positives; and execute appropriate response procedures.Define, create, and maintain SIEM correlation rules, customer-build documents, security processes, and procedures.Accomplish organization goals by accepting ownership for accomplishing new and different requests; and exploring opportunities to add value to job accomplishments.Strong verbal and written communication skills with the ability to interact effectively with C-level executives and technical teams including an ability to explain technical concepts to customers with wide-ranging technical knowledge.Security Certifications is a plus.
Data Loss Prevention (DLP) tools and policies or exposure to Identity and Access Management (IAM) solutions, EDR/MDR, and Firewalls,Provide analysis of Information Security Events and determine true or false positives; and execute appropriate response procedures.Define, create, and maintain SIEM correlation rules, customer-build documents, security processes, and procedures.Accomplish organization goals by accepting ownership for accomplishing new and different requests; and exploring opportunities to add value to job accomplishments.Strong verbal and written communication skills with the ability to interact effectively with C-level executives and technical teams including an ability to explain technical concepts to customers with wide-ranging technical knowledge.Security Certifications is a plus.