Job Location: Available to work On-Site, Brooklyn, NY
Note : 8+ yrs experience, Certified candidate, Candidate must be willing to work days, nights and/or weekends depending on coverage or critical incident response needs
Shift Schedule : Night shifts will typically occur between the hours of 6:00 PM and 6:00 AM. The night SOC analyst position will include weekend shifts
Job Description:
TASKS:
Perform many critical functions within the Threat Management discipline including staffing 24x7x365 coverage at the City’s Security Operations Center (SOC) augmenting FTE shift schedules including days, nights, weekends, and holidays.
Interface with OTI Cyber Command teams internally, with City agencies, vendors, and information-sharing partners.
Monitor City networks and security alerts for intrusion, attempted compromise, and anomalous behaviour; apply mitigation techniques or escalation factors; correlate threat intelligence across various logs collected by established security controls.
Produce routine SOC metrics & reporting.
Maintain situation reports (SITREPS)
Perform weekly quality control checks.
Works closely with SOC Director on incident preparation including the continuous development of new SOC playbooks and runbooks
Skills Set:
Skill | Required /Desired | Experience |
experience in Threat Management/SOC/Incident Response environment. | Required | 8+ years |
For this senior position, leadership skills are a must, including the ability to lead and mentor junior analysts, coordinate team activities, and manage SOC operations effectively | Required | - |
Prior experience working in a SOC environment is mandatory. This includes familiarity with SOC operations, procedures, and tools such as SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems (IDS/IPS), and endpoint detection and response (EDR) tools. | Required | - |
Knowledge of cybersecurity principles, practices, and procedures | Desired | - |
Strong understanding of network and host technologies | Desired | - |
Experience applying techniques for detecting host and network-based intrusion using IDS methods and technologies | Desired | - |
Experience with SIEM technologies, malware analysis and mitigation techniques | Desired | - |
Apply cybersecurity and privacy principles to organizational requirements (confidentiality, integrity, availability, authentication, non-repudiation) | Desired | - |
Interpret information collected by diagnostic network tools (NetFlow, security event logs, IDS systems, etc.) | Desired | - |
Ability to investigate and solve complex problems | Desired | - |
Excellent communication skills are crucial for effectively communicating security incidents, risks, and recommendations to technical and non-technical stakeholders, including SOC Director and senior management. | Desired | - |
Threat Hunting: Proactive threat hunting capabilities to identify and investigate potential security threats or anomalies within the environment before they escalate into incidents. | Desired | - |
Incident Response: Experience in incident response procedures and methodologies, including the ability to analyze security incidents, contain threats, mitigate risks, and recover from security breaches effectively and efficiently | Desired | - |
...LTTS ID# 518911 Title: C++ Developers Location: Omaha, Nebraska Contract role Job Description & Skill Requirement: Create robust, scalable C++ applications and algorithms. Performance Optimization: Identify bottlenecks, improve...
...cannot be too complicated (like the current art) if we are going to redo it completely. If youre interested in creating new illustrations for the cards, please suggest an art style (with an example or reference ) that you can work with, and let me know how long...
...At Bayer were visionaries, driven to solve the worlds toughest challenges and striving for a world where 'Health for all Hunger for none is no longer a dream, but a real possibility. Were doing it with energy, curiosity and sheer dedication, always learning from unique...
...direct clients, recruitment ad agencies, and marketing partners. Lensa partners with DirectEmployers to promote this job for Northrop Grumman. Clicking "Apply Now" or "Read more" on Lensa redirects you to the job board/employer site. Any information collected there is...
...prioritize people who can do this successfully!*Please only apply for this job if you are located in the US. Content Writer (Remote) Wing is on the exciting mission of redefining the future of work for companies worldwide! We are looking to be the one-stop shop...