SOC Analyst II

Overview Join our dynamic Security Operations Center (SOC) team as a SOC Analyst II and become a vital defender of our organization's digital assets! In this energetic role, you'll leverage your cybersecurity expertise to monitor, analyze, and respond to security threats across complex IT infrastructures. Your proactive approach will help safeguard sensitive information, ensure compliance with industry standards, and enhance our overall security posture. This position offers an exciting opportunity to work with cutting-edge security tools and collaborate with talented professionals committed to excellence in cybersecurity. Duties Monitor security alerts and events using SIEM (Security Information and Event Management) systems, ensuring rapid detection of potential threats. Conduct detailed security analysis by reviewing logs, network traffic, and system activity to identify vulnerabilities or malicious activity. Respond promptly to security incidents by executing incident response procedures, including containment, eradication, and recovery efforts. Perform vulnerability assessments and vulnerability research to identify weaknesses within IT infrastructure, including LAN/WAN networks, firewalls, IDS (Intrusion Detection Systems), and IPS (Intrusion Prevention Systems). Collaborate with network engineering teams to implement system security plans, hardening measures, and system hardening techniques aligned with NIST standards and

ISO 27000

series. Support incident management processes by documenting incidents thoroughly and participating in incident recovery activities following best practices such as FISMA or FedRAMP guidelines. Assist in maintaining network security tools such as Cisco ASA firewalls, Cisco ISE for identity management, VMware virtualization platforms, and cloud infrastructure like AWS or Google Cloud Platform. Requirements Proven experience in cybersecurity roles with a focus on threat detection & response within enterprise environments. Strong understanding of computer networking concepts including TCP/IP, routing protocols (OSPF, BGP), VPNs (IPsec), DNS, DHCP, LAN/WAN architecture, and network protocols. Hands-on knowledge of SIEM platforms such as Splunk or SolarWinds for log analysis and threat detection. Familiarity with network security devices including firewalls (Cisco ASA), IDS/IPS systems, and network support tools. Experience working with operating systems like Windows, Linux (Debian, CentOS), macOS, and openSUSE in a system administration capacity. Knowledge of cybersecurity frameworks such as NIST standards, ISO 27000 series, PCI DSS compliance requirements, and RMF processes. Ability to perform vulnerability management activities using tools like Tenable Nessus or open-source alternatives; conduct vulnerability assessments; research emerging threats; and implement mitigation strategies. Skills in scripting languages such as Python or Bash for automation tasks; familiarity with DevOps practices including CI/CD pipelines is a plus. Excellent communication skills to clearly articulate security issues; ability to work under pressure during incident response scenarios; commitment to continuous learning in cybersecurity trends and technologies. Embark on this exciting journey where your expertise will make a real impact! Join us in creating a secure digital environment while advancing your career in cybersecurity excellence!

Pay:

$64,063.52 - $77,151.76 per year

Work Location:

In person