Security Operations Analyst Position Available In Durham, North Carolina

Security Operations Analyst
Our client, a major bank in Central, NJ, is looking for Security Operations Analyst.
Hybrid commute, 2 days on-site in Central NJ Locations and 3 days per week remote. This is a permanent FT career opportunity, with base salary range 110 -135K DOE, plus around 20% bonus and great benefits package.
Security Operations Analyst
In this role you will be a leading member of security operations staff. You will work closely with other members of the Security Operations and Security teams to actively prioritize day to day operational activities, identify and respond to security risks and incidents, recommend and implement solutions, work with affected departments to address the risk, and ensure that the remedy remains in effect. The ideal candidate is experienced in Cyber Defense, response automation, leading as Incident Commander, SOC environment and ability to combine hands-on experience with an understanding of theory and practice. You should have the ability to own, refine, and participate in the end-to-end IR lifecycle to ensure consistency and adherence across the company and subsidiaries. Will be involved with monitoring and oversight of security consultants and other supporting third parties.
The responsibilities will include operational aspects of monitoring and remediating security events, including working with vendors and other IT departments to address the event and escalating to senior members of the team as necessary
.

Key Responsibilities:

Operational:

Perform day to day administration and support of security infrastructure tools and systems, including but not limited to SIEM, IDS/IPS, EDR, SNOW, Email Protection, and other Network or System Monitoring tools
Manage relationships with SOC, MSSP, and other security vendors
Recommend and implement enhancements to existing processes, focusing on automation and integration between other security solutions.
Review security logs of critical systems to identify risks, security threats, or configuration errors
Review daily, weekly, and monthly security reports for any anomalies or issues
Provide first level support on security issues and guidelines from end-users, developers, desktop-support specialists and system administrators
Troubleshoot security issues and assist with security incident responses and forensic investigations
Prepare Incident Response documentation, IR Playbooks, KRIKPIs, clearly communicate technical details for Senior Management
Lead and contribute to detection and response capabilities, focusing on creating high fidelity alerts and developing tuning adjustments for repeated events
Perform forensic activities along with malware analysis of suspicious files during major cyber incidents
Hands on experience with

SIEM/SOAR

platform, playbook creation and detection models to reduce alert fatigue and improve detection accuracy
Project based work:
Implement well engineered solutions to improve security posture
Work with colleagues and vendors to assess different technologies and determine their impact within the bank environment
Provide technical support to design, develop, engineer and implement Cybersecurity requirements for new and existing hardware, networks, and applications
Prepare formal and informal reports with security requirements on security incidents, system vulnerabilities, and ongoing compliance functions
Develop and lead Incident Response initiatives to mature existing or future Cybersecurity services to reduce the threat landscape across the bank

Qualifications:

3-5+ years of proven cybersecurity experience in a similar position
Strong communication skills. Ability to clearly and concisely articulate ideas, solutions, etc.
Strong educational background with BS / MS in Computer Science, Engineering, or related area
Experience with scripting (PowerShell or Python preferred)
Deep understating of log analysis and correlation across large data sets
Take an automation-first approach to mature cyber hygiene
Good analytical and problem solving skills to troubleshoot and resolve security issues
Developing complex SPL and EDR alerts to improve detection abilities
Knowledge of Proxies, Web Servers, Cloud, IDS/IPS and Packet Captures
Understanding of TCP/IP, Routing, Switching, Firewalls, and other Network functionality
Knowledge of Linux, Windows, and Virtualization security
Self-driven to learn and develop skills Please email your resume or use this link to apply directly:
brainsworkgroup.catsone .com/careers/index.php?m=portal&a=details&jobOrderID=16695663
Or email: igork@brainsworkgroup .com
Check ALL our

Jobs:

brainsworkgroup.catsone .com/careers

Keywords:

Cyber security script powershell python SPL EDR Proxies web services cloud

IDS/IPS TSP/IP

Routing Switch Firewall Network
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job

Dice Id:

RTL499109

Position Id:

Cybersecurity3