Security Operations Center (SOC) Analyst ›
Filevine
IT, Operations
Salt Lake City, UT, USA
Posted 6+ months ago
Responsibilities:
- Manage and assign SOC security tickets and monitor environments for security issues.
- Work with internal teams to perform tests and uncover network vulnerabilities.
- Help remediate detected vulnerabilities to maintain a high-security standard.
- Research security enhancements and make recommendations to security management.
Qualifications:
- 1+ year working on a Security Operations Center (SOC) with emphasis on security operations.
- Technical course work or a BS in a technical field such as information security or computer science can be considered as supplementary experience.
- Familiarity with monitoring and secure networks.
- Technical experience in event monitoring technologies such as: Next Generation firewalls, web proxies, NAC, IDS/IPS, FPC, FIN, VPNs, SDWAN, and NetFlow tools, etc.
- Basic experience with SIEM and logging technologies.
- Knowledgeable with basic Threat Hunting practices.
- Basic experience with SOAR platforms and creating run books / play books.
- Experience with NMAP, Wireshark and other network discovery/enumeration tools.
- Basic experience with hardening network devices, servers, and endpoints.
- Experience with Windows, Linux, MacOS security best practices.
- Knowledge of cloud security practices (AWS, Azure, or GCP preferred)
- A strong curiosity, initiative, persistence, and willingness to experiment to provide solutions to diverse technical challenges.
- Automation skills are a plus.
Preferred Qualifications:
- Security Operations Center (SOC) experience
- Experience with incident response (IR) and security operations best practice.
- Experience with orchestration and observability tools.
- Working on a CISSP Certification or equivalent experience.
- Working on a CEH Certification or equivalent experience.
- GSEC Certification or equivalent experience.