SUMMARY OF POSITION The Analyst is responsible for security incident investigation and response lifecycle. Analysts will use our suite of security tools for thorough investigations of incidents that are generated in our ServiceNow platform. This role will be working from a Security Operations Center focused on analyzing attacker behavior and methodologies. Analysts will look for anomalies and search for data breaches. When suspicious behavior is detected, it will be researched, verified, and documented. Incidents are then communicated to the IT department and direction is provided on remediation for the Analyst.

This position has a unique schedule, with 12-hour shifts. This schedule would mean 3 days on/4 days off, then 4 days on/3 days off for alternating weeks and includes weekends.

Specific responsibilities include, but are not limited to:

Responsible for security incident investigation and response lifecycle
Create and distribute incident reports to clients according to Standard Operating Procedure and Service Level Agreement
Correspond with clients regarding incident reports according to Standard Operating Procedure and Service Level Agreement
Monitor computer networks for security issues
Document security breaches and assess the damage they cause
Fix detected vulnerabilities to maintain a high-security standard
Document information necessary for future investigations in knowledge base
Collaborate and generate documentation for transfer knowledge with other analysts on duty to effectively resolve security breaches
Performs other duties as required

Technical Skills/Competencies:
Knowledge of core Information Security concepts related to Governance, Risk & compliance
Knowledge of programming, computer science and networking
Interpersonal and communication skills

Qualifications include:
Applicants must be currently authorized to work in the United States for any employer
Bachelor’s or associates degree in computer science, information technology or related field is preferred
Minimum of 2 to 5 years of prior work experience in cyber security
Experience working in a Security Operation Center (SOC) a plus
Prior experience with penetration testing is a plus
Professional experience with SIEM and IDS/IPS
Security expertise specifically in incident detection, investigation and response
Experience with cyber security software such as Rapid7 InsightIDR, Alienvault, Darktrace or a combination preferred
CompTIA Security+, Certified Ethical Hacker (CEH), Licensed Penetration Tester (LPT) or other relevant certifications are a plus

Job Post Details:

Time: Full Time
Pay Rate: Depends on Experience
Skills: Knowledge of core Information Security concepts related to Governance, Risk & compliance, Knowledge of programming, computer science and networking, Interpersonal and communication skills

Company Info:

Company Name: SocBox
Contact Person: Kayla Bautista
Address: 2635 Camino Del Rio South, #306, San Diego, CA, 92108