Apply on Employer Site

Capgemini · 1 day ago

SOC Analyst

Atlanta, GA

Full-time

Onsite

Mid Level

$56K/yr - $101K/yr

3+ years exp

Capgemini is a global business and technology transformation partner, and they are seeking a SOC Analyst to deliver managed security services to recognized brands. The role involves monitoring, responding to, and tuning security incidents while mentoring junior analysts and providing guidance on investigations and process documentation.

ConsultingInformation TechnologyInsurTechIT ManagementSoftware

No H1B

U.S. Citizen Only

Responsibilities

In the SOC Analyst role, you’ll be entrusted to deliver managed security services to some of the most recognized brands in the world, protecting them from threats that actually matter to their business 24x7x365

The SOC Analyst will be tasked with monitoring, responding to and tuning security related incidents

The SOC Analyst will also work as a mentor for junior SOC Analysts

You will also provide guidance related to investigations, peer review, process documentation, with the potential for interacting with clients

Qualification

Event detectionIncident responseLog analysisSIEM platformsAWS Cloud SecurityCyber Kill ChainNetwork Traffic AnalysisEndpoint protectionOSINTCommunication skillsDocumentation skillsProject managementMentoring

Required

Must be a US Citizen/No Dual Citizenship Due to Client Constraints

3+ Years in a 24x7 security operations environment

Demonstrated experience with event detection, triage, analysis, and response including: Investigative Process, Remediation Techniques, Log Analysis, Host-based Analysis, Network Traffic Analysis, Email Analysis, OSINT, Cyber Kill Chain, MITRE

Experience with AWS Cloud Security

Experience with various SIEM platforms, such as Devo, Elastic, Splunk, QRadar, etc

Experience with various Endpoint protection platforms, such as Cybereason, CrowdStrike, Tanium, etc

Experience with various ticketing systems, such as ServiceNow, Archer, etc

Experience with various SOAR platforms, such as Cortex XSOAR, Siemplify, etc

Knowledgeable regarding computing concepts, such as networking, scripting, etc

Experience with current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks

Experience in computer intrusion analysis and incident response

Computer network surveillance/monitoring

Knowledge and understanding of network protocols, network devices, various operating systems, and secure architectures

Exemplary written and oral communication skills

Ability to document and explain technical details clearly and concisely to audiences with varying degrees of technical aptitude

Take ownership and drive client critical issues to resolution

Ability to manage multiple projects with competing priorities

A willingness to be challenged and a strong desire to learn

Focus on both the tactical (i.e., day-to-day incident handling) and strategic (i.e., positioning our team for future success, such as finding ways to do things faster, better, and more effectively while maintaining a laser focus on quality)

Preferred

Education: Associate's Degree or higher preferred

Certifications: Security industry specific certifications are a plus (CEH, GCIH, GCFA, OSCP etc.) WS CCP certification or MS AZ900 certification is a plus

Benefits

Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave

Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)

Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)

Life and disability insurance

Employee assistance programs

Other benefits as provided by local policy and eligibility