Logo
Alter Solutions

L2 SOC Analyst - Night shift Job at Alter Solutions in Montréal

Alter Solutions, Montréal, QC, CA


Job Description

Job Description
Company Description

ALTER SOLUTIONS is a consulting and technology expertise company founded in 2006. Our mission is to support our clients with their technical and organizational cybersecurity challenges. Our services are structured around the following areas of expertise:

  • Security Management
  • Architecture and Integration
  • Audit and Penetration Testing
  • Cyber Defense

We are an international group established in over ten countries, with a team of 950 employees.

Our success is driven by the development and fulfillment of each team member, and we place great importance on providing the best possible working conditions:

  • Remote work available for a majority of our projects
  • A Flex Office work environment available to everyone at all times to promote communication and collaboration
  • Expert communities to share and disseminate skills within the group
  • Close project management and HR support
  • Annual training and certification opportunities
  • Recognition of our consultants' expertise development
  • Strong openness to short-term or long-term international mobility
Job Description

Join a dynamic security operations team as a SOC Analyst Level 2, where you'll play a key role in the cyber operations of a major financial client with a vast IT landscape of over 10,000 assets.

This is a night shift role (11 PM to 9 AM, 4 days per week) designed for individuals ready to monitor and respond to security events in real-time, ensuring the continuity and safety of critical financial services.

Key Responsibilities:

  • Alert Monitoring and Qualification:

    • Continuously monitor security alerts from SIEM and other detection tools.
    • Assess the credibility, severity, and potential impact of alerts and determine appropriate responses.
  • Initial Remediation and Response:

    • Perform initial remediation tasks such as isolating affected systems, updating rules, or terminating suspicious sessions to mitigate risks promptly.
  • Incident Escalation and Collaboration:

    • Escalate complex or critical incidents to higher-level teams, ensuring thorough documentation and accurate context for rapid resolution.
    • Collaborate with global teams in infrastructure, application production, and senior security staff to address incidents effectively.

Work Context:

  • High-Stakes Environment:

    • Operate in the demanding context of a global financial institution with a complex IT landscape and significant security challenges.
  • Focus on Innovation and Creativity:

    • Leverage cutting-edge technologies and innovative practices to improve monitoring, detection, and response capabilities.
  • Global Collaboration:

    • Engage with diverse teams across global infrastructure and application production environments to address security incidents efficiently.
  • Night Shift Focus:

    • Thrive in a 24/7 SOC environment, contributing critical night-time coverage to maintain uninterrupted security monitoring and incident response.
Qualifications

  • Educational Background: A degree in technical IT, cybersecurity, or a related field.
  • Cybersecurity Knowledge: Strong understanding of cybersecurity principles and practices. Familiarity with common cyber threats and vulnerabilities.
  • Incident Response Skills: Quick reflexes in responding to security incidents. Ability to identify and analyze potential threats.
  • Experience: Open to junior candidates. Prior experience in a SOC environment is advantageous but not mandatory.
  • Flexibility: Willingness to work in a shift-based schedule, including nights and weekends.

Other Required Qualities:

  • Ability to develop good relationships with other production teams.
  • Autonomy, availability, perseverance, and stress resilience (analytical ability during production incidents)
  • Evaluation criteria will include:
    • Understanding of security topics and their implications
    • Ability to respond to security incidents.
    • Motivation, availability, and thoroughness