Security Operations Analyst

Job Title:
Security Operations Analyst... Job Description
Concentrix Catalyst is the experience design and engineering team of Concentrix, a leading global solutions company that reimagines everything CX through strategy, talent and technology. We combine human-centered design, powerful data and strong tech to accelerate CX transformation at scale.

Responsibilities:
• Monitoring and analysis of logs, alerts, and external data sources to determine any security and/or operational impact to the organization.
• Performs research on security events and threat intelligence data using internal and open source tool. Performing proactive threat research and validation for security event data generated from monitoring tools and/or manual analysis.
• Creation of Reference Sets within the SIEM tool to assist Tier 1 SOC Analysts with threat research.
• Monitoring IPS (Intrusion Prevention System) events and performing analysis on the data providing recommended actions or escalating to incident analysts for further review.
• Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures.
• Acts as an escalation point for the Tier I SOC Analysts. Resolves or escalates cyber security incidents and events as part of the established policies and procedures.
• Assists with the containment of threats and remediation of the environment during or following an incident.
• Collaborates with technical teams to identify, resolve, and mitigate security events as part of the Incident Response Plan.
• Evaluates unwarranted changes within the environment as part of monitoring rules within the SIEM tool.
• Creates and executes SOC compliance reports as necessary for risk and compliance teams.
• Monitors SIEM environment for Global organization, providing resolution to events and incidents triggered within the SIEM tool as part of the day to day operations.
• Ensures that critical infrastructure is reporting into the SIEM and reports any systems that are not reporting to the appropriate team/s.
• Performs documentation of event analysis and records this data within our Incident Tracking tool.

Ensuring all relevant data is captured within each incident.
• Assists with the triage of service requests from internal teams within the organization through our incident ticketing system.
• Enhances detections, alerts, and other cyber event correlation rules within the SIEM to reduce false positives.
• Approves various block requests originated by the Tier I SOC Analysts.
• Manages the SOC documentation repository by providing oversight of the annual SOC Documentation review process. Provides recommendations for procedural updates and improvements. Reviews recommendations proposed by Tier I SOC Analysts.
• Represent the Security Operations team in various SOC, Incident Response, and Cyber Security projects.

Qualifications:
• 3+ years of experience outside of school setting
• 2+ years of experience executing security incident handling processes and procedures.
• Working knowledge of Networking fundamentals including but not limited to; The OSI Model, TCP/IP, DNS (Domain Name System), HTTP, SMTP), System Administration and/or Architecture.
• Proficient understanding of various Operating Systems and their architectures: Windows, Unix/Linux and OSx.
• Previous experience operating and tuning SIEM tools, IBM QRadar - preferred
• Ability to work in a highly collaborative environment across many different disciplines.
• Strong relationship skills and collaborative style to enable success across multiple business partners with a focus on building partnerships.
• Scripting capabilities in bash, python, ruby considered a plus. Educational Requirements:
• A bachelor’s degree in computer science, information systems or other related field (preferred); or equivalent work experience.
• Professional security management certifications such as; Global Information Assurance Certification (GIAC) certifications such as GCIA, GCIH, Certified Information Systems Security Professional (CISSP) or other similar credentials are a plus. Special Physical and/or Mental Requirements:
Location:
USA, NE, Work-at-Home
Language Requirements:
Time Type:
Physical & Mental Requirements: While performing the duties of this job, the employee is regularly required to operate a computer, keyboard, telephone, headset, and other office equipment.

Work is generally sedentary in nature. If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents
Concentrix is an Equal Opportunity/Affirmative Action Employer including Disabled/Vets. For more information regarding your EEO rights as an applicant, please visit the following websites:
• English
• Spanish
To request a reasonable accommodation please click here.

If you wish to review the Affirmative Action Plan, please click here. R1499173

Apply Job!

For more such jobs please click here!