SOC (Security Operations Center) Level 1 Analyst (Administrative)
***Please note that the Schedule Shift for this position is 9 PM - 7 AM***
ESSENTIAL DUTIES AND RESPONSIBILITIES- MAY INCLUDE THE FOLLOWING: OTHER DUTIES MAY
BE ASSIGNED.
Ensure that all SOC (Security Operations Center) tickets are handled and resolved within SLAs(Service Level Agreements).Staying up to date with current security vulnerabilities, attacks, and countermeasuresMonitor security alarm activity from remote communications sites to ensure company complianceDocument all incidents and create a clear narrative that supports their conclusionsCreate and run search queries in SIEM tool to help with identifying and troubleshooting security issuesUtilize tools (e.g., Wireshark, Nmap, PCap, etc.) to identify and map devices on the networkOpen, track and close trouble ticketsAnswer incoming hot line calls and monitor various e-mail accounts and act according to SOCprocedures and processesInterface with client or Aspire field personnel to mitigate security incidents. Investigate and providetechnical analysis of various security incidents and possible compromise of systemsProvide recommendations for responding to malware incidentsWorks as Tier 1 Analyst and will escalate all events to Tier 2 Analyst for review before completing eventnotation to assure correctness in reviews.Work directly with other SOC Incident Responders and NOC Engineers for issue resolutionProvide direct communication to affected users and companies on security incidents and maintenance activities.Maintain detailed notes within Operational Management systems on all security issue resolutionactivitiesMaintain customer technical information within defined documentation standardsObtain/maintain technical/professional certifications applicable to position or as directedManage and maintain security monitoring and alerting systemsAssess and identify appropriate solutions to be integrated into the systems operation and makerecommendations for implementation and troubleshootingCommunicate with customers, peers, team and managers regarding incident and change managementProvide emergency on-call support on a rotating schedulePerform other duties as assigned
Minimum Education and
Experience:
High School Diploma or equivalentPossession of an Industry Certification (Security+, CySA+, Cisco Cyber-Ops Associate, NSE4, or similar)
Preferred Education and
Experience:
Bachelors Degree preferred.1+ year of Previous SOC Analyst experience1+ years of experience in Security Management and SIEM (e.g., Splunk,OSSIM, FortiSIEM, LogRhythm, etc.)2+ years of experience with Ticket Management Tools (e.g.,ConnectWise, ServiceNow)
OTHER SKILLS and ABILITIES:
Excellent Interpersonal Skills (develop and maintain strong working relationships)Strong work ethicDetailed oriented with strong written and verbal communication skillsAbility to prioritize tasks.Strong organizational skillsOccasional overtime, afterhours work, or weekend availability may be requiredBasic telephone operation skillsExcellent customer service skillsFamiliarity with ITIL ProcessesProficiency in Microsoft Office programs and ability to learn specialized system toolsAbility to multi-task in a fast-paced environmentTRAVEL: (Limited to No Travel)
PHYSICAL DEMANDS: The physical demands described here are representative of those that must be met by
an employee to successfully perform the essential functions of this job. Reasonable accommodations may be
made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and talk or hear. The employee
frequently is required to stand; walk; and use hands to finger, handle, or feel objects, tools, or controls.
