SOC Security Analyst - SecureWorks
SecureWorks is a global leader in providing intelligence-driven information security solutions. We play an important role, as no organization in the world is immune from cyberattacks and the nature of the attack is changing every day. Internet security is a problem that will never be solved. Unlike point products that address a specific technology issue, we attack the problem holistically by analyzing threat actor tactics, techniques and procedures, and develop solutions using best-of-breed technologies to protect our clients. We are one of the best in the world at understanding the threat.
In short, we give our clients an early warning capability. SecureWorks was founded in 1999 and headquartered in Atlanta, Ga., with offices in all the major security markets around the globe. We have more than 2,000 team members, and partner with more than 4,200 clients in 59 countries to keep the bad guys out of their networks. We’ve been consistently recognized by industry analysts, readers’ polls and as a leader in the Gartner Magic Quadrant for managed security services, worldwide.
Be part of an exciting team that deals with bleeding-edge information security attacks and incident response situations on a daily basis! As a Security Operations Center (SOC) Analyst within SecureWorks’ Managed Security Services (MSS) division you will aid in the management and monitoring of client IDS, IPS, firewall, DDoS mitigation, UTM, log management, and other devices.
Working in a 24x7x365 operations center environment with security and networking professionals you will gain the skills necessary to identify client security breaches and act as a security advocate for a number of well-established global enterprise clients. You will leverage various internal platforms and use your in-depth understanding of exploits and vulnerabilities in order to provide network and data security for our clients.
You will be responsible for performing highly detail-oriented work that involves performing security threat analysis of various malware and web attacks, scheduling IDS signature platform updates and working with clients to remediate security related issues based on operational needs.
-Perform accurate and precise real-time analysis and correlation of logs/alerts from a multitude of
client devices with a focus on the determination of whether said events constitute security incidents
-Analyze and assess security incidents and escalate to client resources or appropriate internal teams
for additional assistance
-Manage all customer situations in a professional manner with emphasis on customer satisfaction
-Handle clients' requests and questions received via phone, e-mail, or an internal ticketing system in a
timely and detail-oriented fashion in order to resolve a multitude of information security related
-Interact with, configure, and troubleshoot network intrusion detection devices and other security
systems via proprietary and commercial consoles, both local and remote
As a managed security provider, SecureWorks expects its employees to understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53. Employees will be expected to acknowledge their security responsibilities in writing prior to gaining access to company systems. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.
-Significant theoretical and practical knowledge in the following areas:
-Unix, Linux, Windows, etc. operating systems
-Well-known networking protocols and services (FTP, HTTP, SSH, SMB, LDAP, etc.)
-Exploits, vulnerabilities, network attacks
-Packet analysis tools (tcpdump, Wireshark, ngrep, etc.)
-Database structures and queries
-Strong written and verbal communication skills
-Attention to detail and great organizational skills
-Excellent problem solving skills that would allow for the ability to diagnose and troubleshoot
-Customer-oriented with a strong interest in client satisfaction
-The ability to learn new technology and concepts quickly
-Completion of a Bachelor’s degree or equivalent program in Computer Science, Computer
Engineering, Electrical Engineering, Network Security, Information Security, Information
Technology, or Mathematics (or equivalent work experience)
-3 years of experience as a network intrusion analyst
-Certifications: GCIA, GPEN, GWAPT, GCIH, GSEC, OSCP, OSCE, OSCP, or similar certification
Positions are available in the following locations:
Myrtle Beach, SC
SecureWorks is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: SecureWorks is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at SecureWorks are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. SecureWorks will not tolerate discrimination or harassment based on any of these characteristics. SecureWorks encourages applicants of all ages.
**Job:** **Security Center Operations - Infrastructure Design and Management*
**Title:** *SOC Security Analyst - SecureWorks Providence, RI, Atlanta, GA and Lisle, IL*
**Requisition ID:** *16000SFE*