Sr. SOC Analyst
Company: Yoh, A Day & Zimmermann Company
Posted on: February 21, 2021
We are currently looking to hire a Senior Information Security
Analyst within the Security Operations Centers (SOC). The SOC
Analyst is a high visibility position, which is responsible for
activities relating to monitoring and responding to security
events. The SOC analyst receives, researches, triages and documents
all security events and alerts as they are received. This
individual supports multiple security-related platforms and
technologies, interfacing with others within the IT organization,
as well as other internal business units and external
customers/partners. Events will be generated from endpoints,
networks, security information and event management (SIEM) systems,
threat intelligence platforms, employees, third-parties and other
sources. The SOC analyst also receives information sharing and
analysis center (ISAC) information and is expected to hunt for
potential compromise across the infrastructure.
The SOC analyst reports to the SOC manager and is an involved
member of the SOC team. This role must display an in-depth
understanding of new trends and technologies related to IT security
and compliance, and contribute to the company IT security strategy
As an active member of the team, monitor and process response for
security events on a 24x7 basis.
Plan and execute regular incident response and postmortem
exercises, with a focus on creating measurable benchmarks to show
progress (or deficiencies requiring additional attention).
Stay current with and remain knowledgeable about new threats.
Analyze attacker tactics, techniques and procedures (TTPs) from
security events across a large heterogeneous network of security
devices and end-user systems.
Participate in threat modeling collaboration with other members of
the security team.
Leverage automation and orchestration solutions to automate
Assist with incident response as events are escalated, including
triage, remediation and documentation.
Aid in threat and vulnerability research across event data
collected by systems.
Investigate and document events to aid incident responders,
managers and other SOC team members on security issues and the
emergence of new threats.
Work alongside other security team members to hunt for and identify
security issues generated from the network, including third-party
Work alongside our Cloud Security and Infrastructure teams to
assist in leveraging our Cloud Security tools in an efficient
Monitor our Cloud presence and respond to alerts accordingly.
Seek opportunities to drive efficiencies.
Manage security event investigations, partnering with other
departments (e.g., IT) as needed.
Evaluate SOC policies and procedures, and recommend updates to
management as appropriate.
Adhere to service level agreements (SLAs), metrics and business
scorecard obligations for ticket handling of security incidents and
Partner with the security engineering team to improve tool usage
and workflow, as well as with the advanced threats and assessment
team to mature monitoring and response capabilities.
Leverage knowledge in multiple security disciplines, such as
Windows, Unix, Linux, data loss prevention (DLP), endpoint
controls, databases, wireless security and data networking, to
offer solutions for a complex heterogeneous environment.
Maintain working knowledge of advanced threat detection as the
Perform other duties as assigned.
3-5 years of information security monitoring and response or
Experience working in a 24x7 operational environment.
Experience driving measurable improvement in monitoring and
response capabilities at scale.
Experience with Cloud infrastructure and security (AWS, Azure,
Experience working with SIEM systems, threat intelligence
platforms, security automation and orchestration solutions,
intrusion detection and prevention systems (IDS/IPS), and other
network and system monitoring tools.
Knowledge of a variety of Internet and network protocols.
Track record of acting with integrity, taking pride in work,
seeking to excel, being curious and adaptable, and communicating
Yoh, a Day & Zimmermann company, is an Equal Opportunity Employer.
All qualified applicants will receive consideration for employment
without regard to race, color, religion, sex, sexual orientation,
gender identity, national origin, disability, or status as a
protected veteran. Visit
https://www.yoh.com/applicants-with-disabilities to contact us if
you are an individual with a disability and require accommodation
in the application process.PandoLogic.Category: Technology,
Keywords: Information Security Analyst
Keywords: Yoh, A Day & Zimmermann Company, Austin , Sr. SOC Analyst, Professions , Austin, Texas
Didn't find what you're looking for? Search again!