Security Operations Center Analyst
Role: Security Operations Center Analyst (SOC)
Location: Des Moines, IA
Work Arrangement: Remote
Complete Description:
The purpose of this position is to provide tier two triage for information technology issues and information security incidents. As a tier two information security incident handler, this position will be responsible for information security incidents for the entirety of their lifecycle.
Serve as the primary incident owner for the Security Operations Center. Lead efforts related to the incident handling processes such as incident discovery, analysis and verification, incident tracking, containment and recovery, incident response coordination, escalation, and notification. Lead efforts in coordinating with other teams to remediate detected incidents. Communicate intelligence to key personnel.
Requirements:
• Systems Security Certified Practitioner (SSCP), CompTIA Security+ (Security+ CE), CompTIA Cybersecurity Analyst (CSA+) or other information security certifications.
• Strong understanding of security technologies and strategies, including but not limited to firewall, IDS, policy management, security processes/best-practice, logging/monitoring, antivirus, vulnerability assessment, patch management, and incident response.
• Solid knowledge of common and emerging attack vectors, penetration methods and countermeasures.
• Knowledge of conflict resolution and incident escalation.
• Ability to work effectively with customers to solve business challenges while balancing the need for confidentiality, integrity, and availability.
• Demonstrated ability to resolve issues in a variety of complex situations which require complex judgments and solutions based on sophisticated analytical thought.
• Demonstrated ability to solve complex problems, convey both oral and written instruction, and handle multiple task interruptions while providing services in a professional and courteous manner.
• Proven ability to work with diverse audiences and translate technical information into non-technical information.
• Must be an individual of high integrity and be a model of unwavering integrity to others.
• Commitment to fostering a diverse working environment.
• Demonstrated ability to work independently, as part of a team of peers, and to support and contribute to a multidisciplinary team environment.
Skills:
- Systems Security Certified Practitioner (SSCP), CompTIA Security+ (Security+ CE), CompTIA Cybersecurity Analyst (CSA+) or other information security c Required 5 Years
- Strong understanding of security technologies and strategies, including but not limited to: firewall, IDS, policy management, security processes/best- Required 5 Years
- Solid knowledge of common and emerging attack vectors, penetration methods and countermeasures. Required 5 Years
- Knowledge of conflict resolution and incident escalation. Required 5 Years
- Ability to work effectively with customers to solve business challenges while balancing the need for confidentiality, integrity, and availability. Required 5 Years
- Demonstrated ability to resolve issues in a variety of complex situations which require complex judgments and solutions based on sophisticated analytic Required 5 Years
- Demonstrated ability to solve complex problems, convey both oral and written instruction, and handle multiple task interruptions while providing service Required 5 Years
- Proven ability to work with diverse audiences and translate technical information into non-technical information. Required 5 Years
- Must be an individual of high integrity and be a model of unwavering integrity to others. Required 5 Years
- Commitment to fostering a diverse working environment. Required 5 Years
- Demonstrated ability to work independently, as part of a team of peers, and also to support and contribute to a multidisciplinary team environment. Required 5 Years