Security Operations Center Analyst

Job title: Junior Security Analyst (Red Team)

Location: Akron, OH | Candidates MUST be located within an hour of Akron, OH

REQUIRED QUALIFICATIONS:

• 1+ year of IT experience
• IT Degree with a focus in cyber security
• Operating Systems (Linux, and/or Windows)
• Understanding Windows and security systems logs
• Scripting such as; PowerShell, Python, Bash etc.
• Dynamic mindset, critical/Open thinking, and researching/investigating. Collaboration and teamwork.
• Basic Understanding of forensic, Malware, threat intelligent practices and tools

Why you should apply:

• FANTASTIC growth opportunity - this team servers a springboard for your IT career and has exceptional visibility into the IT Infra organization within the company
• Excellent training and upskilling
• Ability to work remotely, and an office space available for those who prefer in person/hybrid

MAJOR RESPONSIBILITIES/ESSENTIAL FUNCTIONS:

• Responsible for incident response work including analyzing events, identifying false positive vs. real threats, identifying host involvement, comparing scan results, analyzing logs, and prioritizing incident/events. Helps to solve Tier II incidents and events.
• Responsible for Malware Analytics & Vulnerability Assessments by investigating events similar in complexity to Bash attempts and SQL injections.
• Does work with Forensic Support by working with remote contractor sites to extract data requested by our government SOC counterparts. Helps to develop training materials.
• Using Security Tool Management, troubleshoots and supports the restoration of security tool degradation and outages.
• Through network monitoring works on the identification of resource management, hung processes, and routing configuration issues.
• General understand of IT Security standards and protocols.

ADDITIONAL EXPERIENCE DESIRED (not required):

• Cloud environments
• Forensic Support: RAM Dumping, Host Imaging
• Security Tool Management: Troubleshoot Outage/Degradation, Identify Health Status
• Threat intelligence tools
• Threat intelligence platform-
• A lot of scripting (pyhton powershell)
• Remote forensic tools
• Networking
• Databases
• Application development
• Project management

Able to demonstrate an understanding and/or proficiency in the following areas:

• Ability to research and investigate things as needed. Think outside the box to find solutions to unknown problems.
• Incident Response Tasks: Identify false/real threats, analyze tool alerts, identify Host involvement, compare scan results, identify incident/events, determine priority level(s), analyze logs, initiate appropriate Host scan, validate IP addresses, identify customer POC, remedy an Incident creation, enact a recall list, open a Triage Line, document incidents, communicate incidents, and gather incident details.
• Automation/Scripting: PowerShell, Bash and/or Python
• Security Training: Knowledge of latest security trends and security methodology.
• Understanding of Proxy/Gateways.
• Network Monitoring:
• Malware Analytics: Bash Attempts, SQL Injections, Dos/DDos
• Vulnerability Assessment: Proper Nessus Scan
• Security Tool Management: Troubleshoot Outage/Degradation, Identify Health Status