200+ applicants

Company

Original Job Post

iManage · 3 days ago

Security Operations Center Analyst

United States

Full-time

Remote

Mid Level

3+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

AppsiOS

H1B Sponsorship

Growth Opportunities

Insider Connection @iManage

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Monitor and respond to security & system events from various systems and sources with professionalism and timeliness.

Handle day-to-day monitoring and remediation of security-related infrastructure using tools like Zabbix, Nagios, or Prometheus.

Prepare standard operating procedures and create automation for daily tasks in Azure and/or Kubernetes using tools like Ansible, Terraform, PowerShell, or Python.

Collaborate with other teams to provide high-quality security operations services.

Develop technical solutions and tools to detect and mitigate security vulnerabilities and automate tasks.

Participate in the incident response team for troubleshooting, analysis, and forensics.

Identify, analyze, and manage security risks based on observed events, logs, and threat intelligence.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

IT experienceInformation securityTechnical information absorptionAutomation toolsEndpoint protectionCloud servicesSIEMAzureGlobal schedulesProcess adherenceProblem-solvingContinuous learningCommunicationSelf-motivatedAdaptabilitySEIM Configuration/AdministrationSplunkFirewall AdministrationPalo AltoPanoramaFirewall ACLsDNS Block ListsVPNPKI InfrastructureSSL CertificatesCertificate AuthoritiesMicrosoft Windows Certificate AuthorityScriptingAutomationPython

Required

3+ years of general, yet practical, IT or similar technology experience. System, network or similar experience preferred; others will be considered.

3+ years of Information Security connected experience, either directly or indirectly, along with the capability, willingness and motivation to absorb new technical information at an accelerated pace.

Exposure to automation and scripting tools such as Ansible, Terraform, Python or PowerShell.

Be equipped with a basic understanding of endpoint protection and Anti-Virus, Windows Defender preferred but others would be a suitable replacement.

Contain a ground-level understanding of Azure or similar cloud service such as Amazon Web Services. Certification(s) would stand out.

Understand, or at least possess the ability to articulate, the concept of a SIEM along with the ability, and desire, to develop a deeper understanding quite quickly.

Be highly motivated to consume, process and convert newly obtained knowledge & experience into their day-to-day work.

Have the nearly innate desire to figure things out along with the dedication to maintaining a lifelong commitment to continuous learning.

Possess excellent verbal and written communication skills in both in-person and electronic forms.

Be comfortable with operating under minimal supervision after being given the direction and tools, in a fast-paced environment.

Command the ability to think in a non-linear, yet almost rigorously analytical, type of problem-solving mindset.

Understand, and be able to work with, global schedules that often require nontraditional, and non-US, working hours.

Hold the capability to follow prescribed processes and procedures.

Preferred

Configuration and/or administration of a SEIM is a plus, Splunk preferred.

Experience in firewall administration, Palo Alto & Panorama preferred, including functions such as firewall ACL’s, DNS block lists and VPN.

Cursory understanding of PKI infrastructure including SSL certificates issued by third party Certificate Authorities and/or the Microsoft Windows Certificate Authority.

Scripting and automation experience using Python, PowerShell or similar.

One or more of the following certifications: CompTIA Security+ or GIAC Security Essentials (GSEC), CompTIA Network+ or CCNP/CCNA or similar.

Don't meet every qualification listed above? Studies show that women and people of color are less likely to apply to jobs unless they meet all qualifications. At iManage, we are committed to building a diverse and inclusive environment, and encourage everyone to show up as their full authentic selves. We welcome those that come with a growth mindset and a hunger for learning; so, if you are excited about this role but your past experience doesn't align perfectly with every qualification we encourage you to apply anyways!

Benefits

Health/Vision/Dental/Life Insurance

401k Retirement Savings Plan with a company match up to 4%

HealthJoy healthcare concierge service

Enhanced leave for expecting parents

Flexible time off policy

Company wellness days

Free access to the Healthy Minds app for mindfulness and meditation

Company

iManage

Glassdoor

4.4

iManage provides work product management solutions.

Founded in 1995

Chicago, Illinois, USA

1,001-5,000 employees

https://imanage.com/

H1B Sponsorship

iManage has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Trends of Total Sponsorships

2023 (14)

2022 (15)

2021 (19)

2020 (19)