SOC Analyst

SOC Analyst

Vacancy expired!

MorganFranklin Consulting is a management advisory firm that works with leading businesses and government to address complex and transformational finance, technology, cybersecurity, and business objectives.

MorganFranklin's cybersecurity practice helps clients across the globe to solve their most critical cybersecurity needs. From consulting and implementation to managed services and project resourcing, we work to safeguard assets by identifying risks and developing cybersecurity programs, and implementing solutions that support and meet business goals. Custom tailored and business-aligned service offerings include:

Strategy and GRC

Cybersecurity Operations

Identity & Access Management

Incident Response & Risk Intelligence

Application Security

Managed Security Services Provider (MSSP).

JOB RESPONSIBILITIES:

• Provide targeted attack detection and analysis, including the development of custom signatures and queries within the SIEM.


• Participate in investigations identifying root cause for security events, evaluating anomalous activity, and tuning of the SIEM.


• Monitor internal and external threats; examine logs, events, and alerts generated by multiple platforms for anomalous, unwanted activity, or other suspicious conditions that may result in an Information Security incident.


• Translate threat intelligence into detection and hunting strategies


• Create, develop, and update runbooks/playbooks, processes, procedures, and other documentation


• Understand software, hardware and network security solutions while adjusting them according to our business environment


• Support fellow employees with cybersecurity, software, hardware, or IT needs


• Provide after business hours support in response to security alerts and investigations in an on-call rotation


• Supporting calculation of security metrics. Provide feedback to other team members on security control efficacy, vulnerabilities, gaps in visibility, and recurring issues.


• Understands and has working knowledge on some or all of the following tools and solutions.




• IPS/IDS


• Firewalls


• Symantec EPS, DLP and Console


• Encase

REQUIRED SKILLS:

SIEM experience - Devo, Splunk, Qradar, RSA NetWitness, OSSEC, AlienVault, SolarWinds
Excellent communication skills

EDUCATION

Bachelors' degree in Computer Science, Information Technology, Systems Engineering or similar field and/or 3 years' experience working in Cyber Security or Information Assurance related duties such as incident detection and response, and forensics.

This is a Vaco employment opportunity aligned to MorganFranklin's cybersecurity offering (Vaco LLC, dba "MorganFranklin Cyber")