SOC Analyst @ Phoenix Recruitment | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
SOC Analyst jobs in Boston, MA
Be an early applicantLess than 25 applicantsPosted by Agency
company-logo

Phoenix Recruitment · 4 hours ago

SOC Analyst

ftfMaximize your interview chances
IT System Custom Software Development
badNo H1BnoteU.S. Citizen Onlynote

Insider Connection @Phoenix Recruitment

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Initial triage of security events using established procedures, tools, and monitoring platforms including, but not limited to: Firewalls and network devices, Servers and workstations, Web proxies, Intrusion detection and prevention systems (IDS/IPS), Anti-malware systems, Security Incident and Event Management systems (SIEM), Data Loss Prevention systems (DLP), Advanced Endpoint Detection and Response systems (EDR), External communications from outside entities, users, phone calls, and emails.
Assist senior members of the SOC with analyzing and responding to potential security incidents
Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities, malware, and other threats that have the potential to impact our client organizations.
Document threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs).
Manage the Security monitoring tools, and set up dashboards and alerts.
Develop and maintain technical documentation and Standard Operating Procedures (SOP).
Conduct security research and intelligence gathering on emerging threats and exploits.
Participate in shift transition calls to ensure all open cases and tasks are properly managed and addressed.
Periodic reporting of metrics and corresponding analysis for client review and strategic information security program adjustments and planning.
Maintenance and management of various security technology platforms.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security InformationEvent Management (SIEM)Intrusion DetectionPrevention Systems (IDS/IPS)Data Loss Prevention (DLP)Advanced Endpoint DetectionResponse (EDR)FirewallsNetwork devicesAnti-malware systemsWindows operating systemsLinux operating systemsPythonPowerShellIP networking fundamentalsVulnerability management platformsTechnical security solutionsCyber forensics conceptsRegular expression creationPacket capturesDNS logsDHCP logsNetFlow/PCAP dataSecurity methodologiesCustomer-oriented

Required

Highly motivated to work in information security.
Candidate must be a US citizen / permanent resident.
Customer-oriented & professional.
Strong verbal and written communication skills, fluent in English.
Ability to understand and correlate data from multiple sources, not limited to user authentication events, windows security event logs, Syslog, NetFlow/PCAP data, DHCP logs, DNS logs, intrusion detection alerts, proxy logs, packet captures, and firewall events.
Knowledge of various security methodologies and processes, and technical security solutions a plus.
Understanding how both Windows, Linux, and network platforms are compromised is a plus.
Regular expression creation experience to support dynamic security event analysis.
Solid understanding of IP networking fundamentals, including IPv4, TCP/IP, LAN/WAN design theory, static and dynamic routing protocols, NAT, ACLs, etc.
Solid Understanding of TCP/IP, the OSI Model, and underlying Protocols.
Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies.

Preferred

Bachelor’s degree in Information Technology or equivalent experience preferred; background will be considered instead of formal education.
Experience as a Security/Network Administrator or equivalent knowledge. Previous Security Operations Center (SOC) experience is a plus.
Experience with Security Information and Event Management (SIEM) tools is a plus.
Scripting language skills in Python or PowerShell are a plus.
Understanding of cyber forensics concepts including malware, hunt, etc. a plus.
Understanding how to interpret vulnerability and penetration scan results is a plus.
Configuration and knowledge of design and implementation concepts of firewall, VPN, IPS, vulnerability management platforms, and other security technologies is desirable.
Competency with Microsoft Operating Systems, including server and workstation and AD engineering and administration capabilities, is desirable.
Basic knowledge of Linux operating systems (command line and GUI) is a plus.

Company

Phoenix Recruitment

twitter
company-logo
Phoenix Recruitment is a leading staffing and recruitment firm that helps companies of all sizes find the best possible talent.

Funding

Current Stage
Early Stage
Company data provided by crunchbase
logo

Orion

Your AI Copilot