SOC Analyst
Discovery Communications
Sterling, VAThis was removed by the employer on 4/24/2019 10:30:00 AM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Search for SOC Analyst jobs in Sterling-VA
Search all SOC Analyst postings
Full Time Job
The security analyst plays a pivotal role in keeping our organization’s systems and information secure. He/she works closely with managed service partners, infosec engineering, and internal IT departments to identify and respond to security events. This will include on-premise and cloud-based systems and services. The analyst should be comfortable searching through and filtering large amounts of log data to find actionable information. They are key assets during incident response activities.
An Information Security Jr Analyst must have effective written and communication skills paired with a technical background. He/she be comfortable generating clear and concise reports for infosec and IT management. It is preferable that the candidate would have an understanding of networking, TCP/IP, VPN access, and Active Directory access rights and help policies, along with moderate scripting experience.
Responsibilities
1. Responsible for detecting and assessing cyber security events and incidents across the enterprise
2. Responsible for implementing new processes and procedures as identified by the CSOC and Infosec Leadership to ensure for continuous improvements to monitor, detect and mitigation capabilities.
3. Responsible for understanding the global threat landscape through working with threat intel resources to maintain awareness
4. Triage of service requests, events, and incidents from MSS and internal teams
5. Escalates cyber security events according to Incident Response Plan
6. Assists with containment of threats and remediation of environment during or after an incident
7. Documents security processes, workflows, and playbooks
8. Documents event analysis and drafts reports of incident investigations
9. Assist in creating/updating asset database to track systems globally
10. Assist with the completion of monthly metrics for cyber security to include KPI
11. Stay current on IT security trends and news.
12. Follow change management process and security policies
13. Audit access control lists
14. Review and understand security policies and guidelines to create security work instructions for various security policies
15. Help manage security end point agents
16. Help manage Proxy servers
17. Help log management team collect and analyze system logs
18. Help with deployment of information security technologies and clients
19. Help with pentest reports data gathering and cleanup of data
20. Help develop company-wide best practices for IT security
21. Input pentest results into ticketing system for tracking
22. Other duties as assigned
Requirements
* 2 years in IT or Information Security
* Bachelor’s degree required, or 2 years equivalent experience without degree, or an associates and 1 year experience
* Understanding of firewalls, proxies, SIEM, antivirus, EDR, and IDPS concepts.
* Understanding of, and able to reference NIST framework, CSC framework, CSF framework, ITIL, COBIT, and ISO 2700x
* Experience with Unix/Linux and Windows operating systems in an Active Directory environment
* Experience with endpoint security and SIEM technologies, e.g., Carbon Black, QRadar
* Excellent written and oral communications skills.
* CSA, GISF, GSEC, GMON, Security certifications are highly desired
* Must have the legal right to work in the United States
Sterling, Virginia, VA