Cyber Security SOC Analyst

/in /by

Flextechs is currently seeking a Cyber Security SOC Analyst to work within a Cyber Defense team in a large healthcare organization supporting users in Boise, ID.  This position is a full-time (40 hr/wk) staffing assignment with potential for conversion.  If you are passionate about protecting the IT environment that enables exceptional patient care, we have a spot for you!

The Cyber Security SOC Analyst will:

  1. Perform Real-Time Security Monitoring and Historical Searches:
    • Monitor security alerts in real-time, analyze network traffic, and conduct historical searches to identify potential incidents.
  1. Collaborate and Validate Findings:
    • Collaborate with other team members to validate security findings.
  1. Documentation and Reporting:
    • Create and update documentation related to incidents, investigations, and processes.
    • Maintain accurate records of security events in case management systems.
  1. Incident Management
    • Manage security events upon escalation throughout their lifecycle.
    • Escalate critical incidents to appropriate teams and stakeholders.
    • Serve as an escalation point for SOC events.
  1. Continuous Improvement and Problem-Solving:
    • Identify analytical gaps and knowledge deficiencies.
    • Propose solutions to enhance security monitoring and incident response.
    • Engage in technical problem-solving across various technologies.
  1. Data Ingestion and Process Updates:
    • Document and update the team’s process and data ingestion procedures.
    • Ensure smooth data flow into security tools and systems.
  1. Content Development and Tuning:
    • Interact with the Cyber Defense team and MSSP to understand content needs for tuning security tools.
    • Actively seek opportunities to improve and develop new content based on observed security activity.
  1. Security Incident Remediation:
    • Investigate and troubleshoot security-related anomalies based on platform reporting, network traffic, log files, and automated alerts.
    • Implement remediation measures for escalated incidents.
  1. Process Optimization and Automation:
    • Optimize processes and tooling to enhance efficiency.
    • Automate recurring tasks to streamline operations.

Toolset: Microsoft

Sentinel (MUST – KQL)

Defender

  • Identity (must)
  • Email
  • Endpoint (must)

CrowdStrike Falcon (must)

Proofpoint

  • TAP/TRAP

IDS/IPS (understanding must)

Okta

Desired Qualifications:

Total Years of Technical Experience:  3 plus years working as a Cyber Security SOC Analyst

*** A drug screening and full criminal background check is required ***

FLEXTECHS is a people-centric company based in Boise, ID. We are always looking for talented people with a passion for consulting. We are a unique team that values professional discipline and always puts the customer first.

Here’s what you can expect:

  • Prosperity: Being rewarded for your efforts.
  • Quality: You will be allowed and encouraged to deliver the service that each customer deserves.
  • Support: We will provide the resources you need to grow professionally and the support you need to have a personal life.
  • Sustainability: Our aim is simply to do some great work at affordable rates and make a decent living.

Upload your CV/resume or any other relevant file. Max. file size: 40 MB.