Lenora Systems Inc ยท 3 hours ago
Security Operations Center Analyst
Alameda County, CA
Contract
Remote
Mid Level
Maximize your interview chancesInformation and Communications Technology (ICT)Information Services
Insider Connection @Lenora Systems Inc
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Extensive experience in Palo Alto Cortex XDR and a deep understanding and practical application of XQL queries is required.
Extensive experience in a SOC environment, with a strong background in threat detection, incident response, and threat hunting.
Experience with threat intelligence platforms and integrating threat intelligence feeds to security tools to enrich threat detection.
Experience in proactive threat hunting to identify and neutralize emerging threats.
Experience or working knowledge of cloud, network, and application security.
Experience in Biotech/Pharma is a plus.
Proficiency with SOC tools and technologies such as SIEM (Splunk), EDR (Cortex), and IDS/IPS (e.g., Snort, Suricata).
Strong scripting skills (e.g., Python, PowerShell) to automate tasks, enhance detection capabilities, and develop automation through a SOAR platform.
Ability to configure and fine-tune security tools to maximize their effectiveness by integrating various log sources and data feeds to enhance visibility and detection.
Ability to work with various data sources to create high-fidelity alerting.
Knowledge of machine learning and behavioral analytics to identify anomalies and potential threats.
Ability to develop and refine correlation rules within SIEM to detect complex attack patterns, leveraging the MITRE ATT&CK framework.
Strong analytical skills to correlate events and make informed decisions based on data.
Ability to analyze user behaviors and network traffic to detect suspicious activities.
Ability to establish and maintain strong relationships with security vendors.
Extensive knowledge of DNS, network protocols, firewalls, VPNs, web application firewalls, email security, IPS/IDS, SIEM, DLP, cryptography, application whitelisting, and endpoint protection.
Excellent communication skills.
Resourceful and proactive to find innovative solutions to challenges.
A mindset focused on continuous learning and improvement.
Outstanding judgment and problem-solving skills, including negotiation and conflict resolution.
Ability to work in a team environment, create timelines, and continually make necessary adjustments.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Extensive experience in Palo Alto Cortex XDR and a deep understanding and practical application of XQL queries is required.
Extensive experience in a SOC environment, with a strong background in threat detection, incident response, and threat hunting.
Experience with threat intelligence platforms and integrating threat intelligence feeds to security tools to enrich threat detection.
Experience in proactive threat hunting to identify and neutralize emerging threats.
Experience or working knowledge of cloud, network, and application security.
Proficiency with SOC tools and technologies such as SIEM (Splunk), EDR (Cortex), and IDS/IPS (e.g., Snort, Suricata).
Strong scripting skills (e.g., Python, PowerShell) to automate tasks, enhance detection capabilities, and develop automation through a SOAR platform.
Ability to configure and fine-tune security tools to maximize their effectiveness by integrating various log sources and data feeds to enhance visibility and detection.
Ability to work with various data sources to create high-fidelity alerting.
Knowledge of machine learning and behavioral analytics to identify anomalies and potential threats.
Ability to develop and refine correlation rules within SIEM to detect complex attack patterns, leveraging the MITRE ATT&CK framework.
Strong analytical skills to correlate events and make informed decisions based on data.
Ability to analyze user behaviors and network traffic to detect suspicious activities.
Ability to establish and maintain strong relationships with security vendors.
Extensive knowledge of DNS, network protocols, firewalls, VPNs, web application firewalls, email security, IPS/IDS, SIEM, DLP, cryptography, application whitelisting, and endpoint protection.
Excellent communication skills.
Resourceful and proactive to find innovative solutions to challenges.
A mindset focused on continuous learning and improvement.
Outstanding judgment and problem-solving skills, including negotiation and conflict resolution.
Ability to work in a team environment, create timelines, and continually make necessary adjustments.
Preferred
Experience in Biotech/Pharma is a plus.
Company
Lenora Systems Inc
Lenora Systems brand represents a dedication to providing high-quality IT professionals who can get job done.
Founded in 2012
501-1000 employees
H1B Sponsorship
Lenora Systems Inc has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (25)
2022 (33)
2021 (24)
2020 (34)
Funding
Current Stage
Late StageCompany data provided by crunchbase
