Job Title:
Security Operations Analyst
We create game-changing solutions across the enterprise, that help brands grow across the world and into the future. We are trusted by clients across all major sectors, from up-and-coming success stories to iconic Fortune Global 500 brands in over 70 countries spanning 6 continents.
Our game-changers:
Challenge Conventions Deliver outcomes unimagined Create experiences that go beyond WOW If this is you, we would love to discuss career opportunities with you.
In our Concentrix Catalyst team, you will work with the engine that powers the experience design and engineering capabilities at Concentrix. A leading global solutions company that reimagines everything CX through strategy, talent, and technology. We combine human-centered design, powerful data, and strong tech to accelerate CX transformation at scale. You will be surrounded by the best in the world providing market leading technology and insights to modernize and simplify the customer experience. Within our professional services team, you will deliver strategic consulting, design, advisory services, market research, and contact center analytics that deliver insights to improve outcomes and value for our clients. Hence achieving our vision.
Concentrix provides eligible employees with an opportunity to enroll in many benefit programs, generally including private medical plans, great compensation package, retirement savings plans, paid learning days, and flexible workplaces. Specific benefits plans will vary by country/region.
We're a remote-first company looking for the absolute best talent in the world. Experience the power of a game-changing career.
As technology continues to advance so does the threat landscape. Attackers are now using more sophisticated tactics to evade security controls. As a result, We must also continue to advance its capabilities in threat detection and monitoring systems.
The SOC Tier II Analyst is responsible for monitoring, analysis, response, and escalation of security incidents and events. The Security Operations Center is the first line of detection and defense which actively monitors the SIEM (Security Information & Event Management), reviews log and event data, and works tickets associated with said data. Providing research using internal and open source tools, resolving and escalating incidents using established policies and procedures. This is a work at home position in the US.
Responsibilities: + Monitoring and analysis of logs, alerts, and external data sources to determine any security and/or operational impact to the organization.
+ Performs research on security events and threat intelligence data using internal and open source tool. Performing proactive threat research and validation for security event data generated from monitoring tools and/or manual analysis.
+ Creation of Reference Sets within the SIEM tool to assist Tier 1 SOC Analysts with threat research.
+ Monitoring IPS (Intrusion Prevention System) events and performing analysis on the data providing recommended actions or escalating to incident analysts for further review.
+ Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures.
+ Acts as an escalation point for the Tier I SOC Analysts. Resolves or escalates cyber security incidents and events as part of the established policies and procedures.
+ Assists with the containment of threats and remediation of the environment during or following an incident.
+ Collaborates with technical teams to identify, resolve, and mitigate security events as part of the Incident Response Plan.
+ Evaluates unwarranted changes within the environment as part of monitoring rules within the SIEM tool.
+ Creates and executes SOC compliance reports as necessary for risk and compliance teams.
+ Monitors SIEM environment for Global organization, providing resolution to events and incidents triggered within the SIEM tool as part of the day to day operations.
+ Ensures that critical infrastructure is reporting into the SIEM and reports any systems that are not reporting to the appropriate team/s.
+ Performs documentation of event analysis and records this data within our Incident Tracking tool. Ensuring all relevant data is captured within each incident.
+ Assists with the triage of service requests from internal teams within the organization through our incident ticketing system.
+ Enhances detections, alerts, and other cyber event correlation rules within the SIEM to reduce false positives.
+ Approves various block requests originated by the Tier I SOC Analysts.
+ Manages the SOC documentation repository by providing oversight of the annual SOC Documentation review process. Provides recommendations for procedural updates and improvements. Reviews recommendations proposed by Tier I SOC Analysts.
+ Represent the Security Operations team in various SOC , Incident Response, and Cyber Security projects.
Qualifications: + 3+ years of experience outside of school setting
+ 2+ years of experience executing security incident handling processes and procedures.
+ Working knowledge of Networking fundamentals including but not limited to; The OSI Model, TCP /IP, DNS (Domain Name System), , SMTP ), System Administration and/or Architecture.
+ Proficient understanding of various Operating Systems and their architectures: Windows, Unix/Linux and OSx.
+ Previous experience operating and tuning SIEM tools, IBM QRadar – preferred
+ Ability to work in a highly collaborative environment across many different disciplines.
+ Strong relationship skills and collaborative style to enable success across multiple business partners with a focus on building partnerships.
+ Scripting capabilities in bash, python, ruby considered a plus.
Educational Requirements: + A bachelor's degree in computer science, information systems or other related field (preferred); or equivalent work experience.
+ Professional security management certifications such as; Global Information Assurance Certification ( GIAC ) certifications such as GCIA , GCIH , Certified Information Systems Security Professional ( CISSP ) or other similar credentials are a plus.
Special Physical and/or Mental Requirements: #ConcentrixCatalyst
Location:
USA , NE, Work-at-Home
Language Requirements:
Time Type:
Physical & Mental Requirements: While performing the duties of this job, the employee is regularly required to operate a computer, keyboard, telephone, headset, and other office equipment. Work is generally sedentary in nature.
If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents ( Concentrix is an Equal Opportunity/Affirmative Action Employer including Disabled/Vets.
For more information regarding your EEO rights as an applicant, please visit the following websites:
-English ( EEOC KnowYourRights6.12.pdf)
-Spanish ( EEOC KnowYourRightsSp6.12.pdf)
To request a reasonable accommodation please click here ( .
If you wish to review the Affirmative Action Plan, please click here ( .
