Security Operations Analyst

Job Title: Security Operations Analyst... Job Description Concentrix Catalyst is the experience design and engineering team of Concentrix, a leading global solutions company that reimagines everything CX through strategy, talent and technology. We combine human-centered design, powerful data and strong tech to accelerate CX transformation at scale. Responsibilities: ? Monitoring and analysis of logs, alerts, and external data sources to determine any security and/or operational impact to the organization. ? Performs research on security events and threat intelligence data using internal and open source tool. Performing proactive threat research and validation for security event data generated from monitoring tools and/or manual analysis. ? Creation of Reference Sets within the SIEM tool to assist Tier 1 SOC Analysts with threat research. ? Monitoring IPS (Intrusion Prevention System) events and performing analysis on the data providing recommended actions or escalating to incident analysts for further review. ? Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures. ? Acts as an escalation point for the Tier I SOC Analysts. Resolves or escalates cyber security incidents and events as part of the established policies and procedures. ? Assists with the containment of threats and remediation of the environment during or following an incident. ? Collaborates with technical teams to identify, resolve, and mitigate security events as part of the Incident Response Plan. ? Evaluates unwarranted changes within the environment as part of monitoring rules within the SIEM tool. ? Creates and executes SOC compliance reports as necessary for risk and compliance teams. ? Monitors SIEM environment for Global organization, providing resolution to events and incidents triggered within the SIEM tool as part of the day to day operations. ? Ensures that critical infrastructure is reporting into the SIEM and reports any systems that are not reporting to the appropriate team/s. ? Performs documentation of event analysis and records this data within our Incident Tracking tool. Ensuring all relevant data is captured within each incident. ? Assists with the triage of service requests from internal teams within the organization through our incident ticketing system. ? Enhances detections, alerts, and other cyber event correlation rules within the SIEM to reduce false positives. ? Approves various block requests originated by the Tier I SOC Analysts. ? Manages the SOC documentation repository by providing oversight of the annual SOC Documentation review process. Provides recommendations for procedural updates and improvements. Reviews recommendations proposed by Tier I SOC Analysts. ? Represent the Security Operations team in various SOC, Incident Response, and Cyber Security projects. Qualifications: ? 3+ years of experience outside of school setting ? 2+ years of experience executing security incident handling processes and procedures. ? Working knowledge of Networking fundamentals including but not limited to; The OSI Model, TCP/IP, DNS (Domain Name System), HTTP, SMTP), System Administration and/or Architecture. ? Proficient understanding of various Operating Systems and their architectures: Windows, Unix/Linux and OSx. ? Previous experience operating and tuning SIEM tools, IBM QRadar - preferred ? Ability to work in a highly collaborative environment across many different disciplines. ? Strong relationship skills and collaborative style to enable success across multiple business partners with a focus on building partnerships. ? Scripting capabilities in bash, python, ruby considered a plus. Educational Requirements: ? A bachelor?s degree in computer science, information systems or other related field (preferred); or equivalent work experience. ? Professional security management certifications such as; Global Information Assurance Certification (GIAC) certifications such as GCIA, GCIH, Certified Information Systems Security Professional (CISSP) or other similar credentials are a plus. Special Physical and/or Mental Requirements: Location: USA, NE, Work-at-Home Language Requirements: Time Type: Physical & Mental Requirements: While performing the duties of this job, the employee is regularly required to operate a computer, keyboard, telephone, headset, and other office equipment. Work is generally sedentary in nature. If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents Concentrix is an Equal Opportunity/Affirmative Action Employer including Disabled/Vets. For more information regarding your EEO rights as an applicant, please visit the following websites: ? English ? Spanish To request a reasonable accommodation please click here. If you wish to review the Affirmative Action Plan, please click here. R1499173

Apply Job!