Security Operations Center Analyst

2 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from DivIHN Integration

Title: SOC Analyst (Second Shift) - Remote

Location: Remote

Duration: 12 Months

• Proactively identify adversary activities in the network to discover threats before they cause harm.
• Skills and experience in log analysis, network traffic analysis, and the MITRE attack framework are preferred.
• Collaborate with the global IT security team and US SOC teams.
• Perform duties in accordance with departmental guidelines, including real-time and historical analysis using security tools such as SIEM, Endpoint Protection, Firewalls, EDR, IDS, Email Gateway, Web Content Filtering, Network Detection & Response, and Identity Management.
• Conduct incident response triage to assess suspected hosts and scope of attacks.
• Review and mentor junior staff for quality and career development.
• Stay updated on attacker tactics, techniques, and procedures to identify sophisticated threats.
• Work with SOC, Intelligence, Incident Response, and Enterprise Security Teams for investigations and threat hunting.
• Identify network visibility gaps and recommend improvements.
• Develop and update playbooks, processes, and detection capabilities based on investigation feedback.
• Coordinate escalation for advanced forensics, malware reverse-engineering, and host reviews to third-party vendors.
• Communicate security incident details effectively to business stakeholders and non-technical audiences.

• Experience with SOC operations, scheduling, and tools including SIEM, SOAR, and DFIR products.
• Understanding of incident response lifecycle and cybersecurity best practices.
• Knowledge of security policies, regulations (e.g., SOX, privacy), and internal controls.
• Ability to influence security awareness and adoption within the organization.
• Strong analytical, problem-solving, communication, and interpersonal skills.
• Project management skills for technical initiatives.
• Proficiency with Microsoft Office and other relevant software.
• Additional technologies may apply based on business needs.
• Preferred: Insurance industry knowledge.

• Minimum of five years of technical security experience across platforms, OS, software, and network protocols, or an equivalent combination.
• Industry certifications such as CISSP, GCFA, GCIH, GCFE are preferred, or related discipline/experience in Computer Science.

• Mid-Senior level

• Contract

• Consulting, Human Resources, and Analyst

• Insurance, IT Services and Consulting, Computer and Network Security