One Source Communications
SOC Analyst I
One Source Communications, Raleigh, North Carolina, United States, 27601
Overview:
The Security Operations Center (SOC) Analyst I provides support to One Sources Managed Security Services customers. The SOC Analyst I should have a background and general experience within Information Technology, and an intermediate knowledge of cyber security practices. The SOC Analyst I should also have a thirst for knowledge and an ability to tackle new problems quickly by using available security tools to successfully remedy issues with minimal supervision from the Senior SOC Analyst and/or SOC Manager. This role focuses primarily on security analysis (escalations and investigations), while also handling basic security engineering tasks (systems, upgrades, reporting, maintenance, etc).Responsibilities:Keep information regarding our clients, their data, and other sensitive information confidentialProvide remote and on-site security and incident response support to a growing list of clientsTriage security alerts and events to quickly determine scope, impact, and riskInvestigate security alerts and events to correlate related events into incidentsBased on research and threat intelligence sources, make practical and actionable recommendations to customers on next steps for alerts and eventsProactively hunt for security exposures and threats in a customers environmentAssist in new security customer onboarding and setupUpdate knowledge base to provide continuity among other company personnelCommunicate ticket status and document updates to clients and technical staff as neededProvide first level after hours and holiday on-call support on a revolving basis with other staffRegularly scheduled for off-shift (evening or overnight) in a 4x10 or 3/4x12 modelInteract with clients and vendors over the phone and in person in a professional mannerProvide security tool tuning recommendations and feedback to the Security Engineering teamRespond and manage internal security incidents as reported to the Security Operations Center?Data and system use must comply with?One Source?information security?policies and standards.?Unauthorized access to data and/or systems is prohibited.?
Qualifications:Required Skills / Abilities:Basic knowledge of security concepts including, but not limited to, general security concepts, threats and vulnerabilities, digital forensics, threat hunting, indicident response, security architecture, mitigation techniques, etc.Basic knowledge of security tools and controls including, but not limited to, EDR, Network Security, Email Security, SIEM, SOAR, ITSM software, etc.Monitors and triages security alerts generated from various security tools and controls deployed in the customers environmentPrioritizes security alerts to determine when escalation is required and successfully engages SOC Analyst II or Senior SOC AnalystIdentifies customer issues and presents them to Senior SOC Analysts and SOC Manager clearly and consisely for timely resolutionPossesses verbal and written communication skills for daily interactions with customers and fellow team members/coworkers
Education / Experience:Bachelors Degree, or High School Diploma and additional industry experience1-2 years of experience in a Cyber Security role with responsibility for investigation of security incidents or incident remediationPreference for direct experience in a Cyber Security Analyst role or appropriate industry certifications.?Willingness and desire to stay updated on the current threat landscape by using multiple sources (e.g., articles, podcasts, etc.)Ability to complete any/all training and certification requirements as assigned by the SOC ManagerUpdated: 7/30/2024
The Security Operations Center (SOC) Analyst I provides support to One Sources Managed Security Services customers. The SOC Analyst I should have a background and general experience within Information Technology, and an intermediate knowledge of cyber security practices. The SOC Analyst I should also have a thirst for knowledge and an ability to tackle new problems quickly by using available security tools to successfully remedy issues with minimal supervision from the Senior SOC Analyst and/or SOC Manager. This role focuses primarily on security analysis (escalations and investigations), while also handling basic security engineering tasks (systems, upgrades, reporting, maintenance, etc).Responsibilities:Keep information regarding our clients, their data, and other sensitive information confidentialProvide remote and on-site security and incident response support to a growing list of clientsTriage security alerts and events to quickly determine scope, impact, and riskInvestigate security alerts and events to correlate related events into incidentsBased on research and threat intelligence sources, make practical and actionable recommendations to customers on next steps for alerts and eventsProactively hunt for security exposures and threats in a customers environmentAssist in new security customer onboarding and setupUpdate knowledge base to provide continuity among other company personnelCommunicate ticket status and document updates to clients and technical staff as neededProvide first level after hours and holiday on-call support on a revolving basis with other staffRegularly scheduled for off-shift (evening or overnight) in a 4x10 or 3/4x12 modelInteract with clients and vendors over the phone and in person in a professional mannerProvide security tool tuning recommendations and feedback to the Security Engineering teamRespond and manage internal security incidents as reported to the Security Operations Center?Data and system use must comply with?One Source?information security?policies and standards.?Unauthorized access to data and/or systems is prohibited.?
Qualifications:Required Skills / Abilities:Basic knowledge of security concepts including, but not limited to, general security concepts, threats and vulnerabilities, digital forensics, threat hunting, indicident response, security architecture, mitigation techniques, etc.Basic knowledge of security tools and controls including, but not limited to, EDR, Network Security, Email Security, SIEM, SOAR, ITSM software, etc.Monitors and triages security alerts generated from various security tools and controls deployed in the customers environmentPrioritizes security alerts to determine when escalation is required and successfully engages SOC Analyst II or Senior SOC AnalystIdentifies customer issues and presents them to Senior SOC Analysts and SOC Manager clearly and consisely for timely resolutionPossesses verbal and written communication skills for daily interactions with customers and fellow team members/coworkers
Education / Experience:Bachelors Degree, or High School Diploma and additional industry experience1-2 years of experience in a Cyber Security role with responsibility for investigation of security incidents or incident remediationPreference for direct experience in a Cyber Security Analyst role or appropriate industry certifications.?Willingness and desire to stay updated on the current threat landscape by using multiple sources (e.g., articles, podcasts, etc.)Ability to complete any/all training and certification requirements as assigned by the SOC ManagerUpdated: 7/30/2024