Cyber Security SOC Analyst
Flextechs is currently seeking a Cyber Security SOC Analyst to work within a Cyber Defense team in a large healthcare organization supporting users in Boise, ID. This position is a full-time (40 hr/wk) staffing assignment with potential for conversion. If you are passionate about protecting the IT environment that enables exceptional patient care, we have a spot for you!
The Cyber Security SOC Analyst will:
- Perform Real-Time Security Monitoring and Historical Searches:
-
- Monitor security alerts in real-time, analyze network traffic, and conduct historical searches to identify potential incidents.
- Collaborate and Validate Findings:
-
- Collaborate with other team members to validate security findings.
- Documentation and Reporting:
-
- Create and update documentation related to incidents, investigations, and processes.
- Maintain accurate records of security events in case management systems.
- Incident Management
-
- Manage security events upon escalation throughout their lifecycle.
- Escalate critical incidents to appropriate teams and stakeholders.
- Serve as an escalation point for SOC events.
- Continuous Improvement and Problem-Solving:
-
- Identify analytical gaps and knowledge deficiencies.
- Propose solutions to enhance security monitoring and incident response.
- Engage in technical problem-solving across various technologies.
- Data Ingestion and Process Updates:
-
- Document and update the team’s process and data ingestion procedures.
- Ensure smooth data flow into security tools and systems.
- Content Development and Tuning:
-
- Interact with the Cyber Defense team and MSSP to understand content needs for tuning security tools.
- Actively seek opportunities to improve and develop new content based on observed security activity.
- Security Incident Remediation:
-
- Investigate and troubleshoot security-related anomalies based on platform reporting, network traffic, log files, and automated alerts.
- Implement remediation measures for escalated incidents.
- Process Optimization and Automation:
-
- Optimize processes and tooling to enhance efficiency.
- Automate recurring tasks to streamline operations.
Toolset: Microsoft
Sentinel (MUST – KQL)
Defender
- Identity (must)
- Endpoint (must)
CrowdStrike Falcon (must)
Proofpoint
- TAP/TRAP
IDS/IPS (understanding must)
Okta
Desired Qualifications:
Total Years of Technical Experience: 3 plus years working as a Cyber Security SOC Analyst
*** A drug screening and full criminal background check is required ***
FLEXTECHS is a people-centric company based in Boise, ID. We are always looking for talented people with a passion for consulting. We are a unique team that values professional discipline and always puts the customer first.
Here’s what you can expect:
- Prosperity: Being rewarded for your efforts.
- Quality: You will be allowed and encouraged to deliver the service that each customer deserves.
- Support: We will provide the resources you need to grow professionally and the support you need to have a personal life.
- Sustainability: Our aim is simply to do some great work at affordable rates and make a decent living.