Mid-Level SOC Security Analyst | 219826

Mid-Level SOC Security Analyst | 219826

Vacancy expired!

Mid-Level SOC Security Analyst | 219826

DETAILS

Location: Dallas, TX 75234 (99% remote work during Covid)

Position Type: Direct-Hire

Hourly / Salary: BOE!

JOB SUMMARY

Vaco Technology is currently seeking a Mid-Level SOC Security Analyst for a Direct-Hire opportunity located in Dallas, TX. The Mid-Level SOC Security Analyst will be responsible for the security infrastructure day-to-day operations. The Mid-Level SOC Security Analyst will work with 3rd Party Vendors to support the enterprise and be responsible for managing the vulnerability remediation process and preventing intrusions. The Mid-Level SOC Security Analyst will work closely with Application Development / DevOps Teams and compliance to ensure new and existing technical solutions are implemented in a manner that preserves the confidentiality, integrity, and availability of customer data. The Mid-Level SOC Security Analyst will proactively to design and implement security tools, controls, and measures to ensure safety across our organization and products. The primary responsibilities of the Mid-Level SOC Security Analyst entail oversight of technical security operations, informational support respective to information security functions, and delivery of technical presentations, and training, etc.

• First Line of Defense / First Line of Incident Investigation


• Assist IT Security Leaders with Continual Development / Refinement of IT Security Policies


• Provide Critical Support to IT Security Programs - Communicate Security Policies / Programs / Processes


• Deliver Occasional Training / Presentations to IT Staff Focused on IT Security Topics - Incident Response, etc.


• Provide Critical Support to Projects - Ensure Projects Comply with Security Requirements


• Assist IT Compliance Team in the Evaluation of Control Testing


• Point of Escalation for Discovered Vulnerabilities within the Infrastructure - Provide Recommendations for Improvement, etc.


• Coordinate / Execute Penetration Testing Scans


• Read / Understand System / OS / Application Files


• Perform Risk Assessments / Vulnerability Management / Penetration Testing for UNIX / Linx / MAC / Windows Systems / Web Applications, etc.


• Working within a Heterogeneous Computing Environment Spanning Physical / Virtual Data Centers


• Work with DevOps / Software Engineering Teams to Identify / Fix Security Flaws / Vulnerabilities


• Detect / Investigate / Recover from Security Incidents - Assist in Incident Response Plans / Root Cause Analysis


• Analyze Potential Impact of New Threats / Exploits - Communicate Risks to Relevant Business Units


• Technical Knowledge / Understanding / Exposure - Internet Protocols / Networking / TCP/IP / AWS / Azure / SaaS Applications / IDS / IPS / VPN / WAF / DLP / Anti-Virus / Anti-Malware / SEIM / Vulnerability Scanners / Web Proxies / Firewalls / MFA / Key Management, etc.

JOB REQUIREMENTS

• IT SOC Security Analyst (2+ years) - Network Ops / Engineering Components / Infrastructure


• Perform Control Reviews on Systems Development / Operation / Programming / Control / Security Procedures


• Document Incidents / Technical Writing / Project Documentation


• Active Directory Support / Troubleshooting (basic-to-intermediate)


• Auditing Concepts / Principles (knowledge) - SOX / PCI, etc.

PREFERRED (not required)

• Certifications - Security+ / CCISP, etc.


• Computer Controls / Logical Access Controls / Data Center Physical Security Controls / Ops Controls


• Disaster Recovery Planning


• SOX Section 404 (understanding)


• Computer Systems Development / Programming (understanding)


• Oracle User Administration (knowledge / experience)


• General Accounting Principles (knowledge)


• ManageEngine AD AuditPlus / ServiceDesk Plus


• Security Concepts / Best Practices / Procedures (familiarity)