We are looking for a Senior Cloud SOC Analyst that knows security operations cold, has deep experience with heavily regulated cloud environments and likes to build.
The SOC Analyst 2 will be responsible for continuous monitoring of company environments and the creation of detection analytics to align with NIST 800-53 Rev 5 requirements and MITRE ATT&CK techniques.
The SOC Analyst 2 will serve as the initial escalation point for investigations and will mentor other analysts.
Strong understanding of MITRE D3FEND and preventive security measures is a plus.
Duties:
● Develop the continuous monitoring of Company's Azure platform using a variety of industry-leading and proprietary monitoring and scanning technologies.
● Serve as the initial escalation for a team of SOC analysts providing monitoring and incident response.
● Develop and maintain analytics to identify MITRE ATT&CK techniques and misalignment with NIST 800-53 requirements.
● Work with the Engineering team to ensure proper configuration and coverage for the MITRE D3FEND framework.
● Mentor analysts with a focus on understanding detection engineering and analytical analysis.
● Support all Company policies and procedures required to achieve and maintain FedRAMP, StateRAMP and other compliance standards.
● Obtain appropriate certifications (cloud security certifications as an example) for technical and security operations-related professional growth.
Qualifications:
● 4+ years of experience excelling in a Security Operations Center (SOC), including mentoring junior analysts, with demonstrable experience with cloud-based workloads subject to FedRAMP or similar NIST requirements.
● Deep experience with these technologies:
○ SIEM + SOAR for reporting and analysis, with deep experience in Splunk
○ Endpoint security solutions including TrendMicro or similar
○ Infrastructure and database scanning with Tenable or similar
○ Cloud Monitoring such as Azure Monitor and AWS Config
● Familiarity with:
○ DAST + IAST for application scanning including Acunetix
○ Container scanning including BlackDuck and Trivvy
● Strong verbal and written communication skills and strong analytical and problem-solving abilities to analyze, organize and translate complex technical concepts into clear and digestible information.
● Ability to work independently or as a member of a team on various tasks and identify goals and tasks that are attainable and appropriate for ensuring Company's success.
● Bachelor’s degree or higher from a nationally accredited university in a related field or equivalent level certifications (i.e. SSCP, CASP+, GCIH, Microsoft Certified: Azure Security Engineer Associate, AWS Certified Security Specialty)
● Must be a U.S. Citizen.
Integrity Resources was formed in 2010 as a result of years of staffing experience combined with the need for a better industry model. Where we differentiate from other organizations is that we operate based on relationships. Our approach takes into consideration every aspect of a hiring requirement from BOTH the client and the candidate. Our desire to listen, learn, and understand our customers culture AND specific candidate needs along with our ability to provide exemplary customer service enables us to maintain and develop long term relationships across the staffing industry.
If you don’t believe us, feel free to reach out today....you’ll notice the difference a true business partner makes.
