Director of Security Operations overseeing incident response tasks at Gartner. Leading a geographically dispersed team and improving capabilities for detecting and responding to threats.
About the role
- SOC Analyst providing security infrastructure operations support at Leidos. Engaging in incident response and management while collaborating with multiple defense agencies.
Responsibilities
- Provide SOC and Incident Response support, including coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents
- Monitor and reply to events and alerts from the SIEM, monitoring tools, and other network tools
- Investigate events of interest and escalating to senior NOC / SOC members
- Drive incidents from discovery to closure and reporting, with comprehension of escalation procedures and criteria
- Categorize incidents & events, and partner with appropriate authorities in the production of security incident reports
- Coordinate with other DISA organizations, activities, and other services as appropriate to de-conflict blue / red team activity with open incidents/events
- Build timelines, documents, briefings, and other products as required to inform stakeholders of incident response actions, analysis, and the impact of both adversary activity and blue force response actions
- While not in a period of incident response, conduct continuous exercises and dry runs to improve response outcomes in the event of a cyber-incident
- Provide cybersecurity root-cause analysis in support of any tickets for which it fails to meet the Acceptable Quality Levels (AQLs)
- Investigate compromised endpoints, identifying IOCs within the environment and conveying to users and other teams impact of discovered events.
Requirements
- Bachelor’s degree and 5+ years of relevant experience
- Must have an active DoD IAT Level II certification, prior to start (e.g. Sec+, CISSP)
- Incident Response experience
- Knowledge of MITRE ATT&CK principles
- Systems administration experience - desktop and server systems connected to local and wide area networks
- Troubleshooting skills and knowledge of a troubleshooting methodology
- Knowledge Management skills to follow and create documentation
- KQL/Office 365 Incident response experience.
Benefits
- Health and Wellness programs
- Income Protection
- Paid Leave
- Retirement
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Manager for Product Security Ops & Strategy at Salesforce overseeing strategic initiatives and ensuring alignment with security goals. Driving operational excellence and executive communication across teams.
Principal SOC Engineer shaping cyber defense at The Missing Link. Engaging with clients and mentoring engineers in advanced security technologies.
Security Operations Manager responsible for planning and managing security programs at Cox Enterprises. Collaborating with stakeholders and analyzing security vulnerabilities while conducting investigations.
Security Operations Centre Analyst for Paysafe, responding to real - time security alerts and assisting Incident Response in security events. Requires collaboration in a global team environment with various security frameworks.
SOC Analyst focusing on real - time security monitoring and incident response for Atos Group in Bengaluru, ensuring proactive threat detection and effective response to incidents.
Manage global corporate security operations programs at OpenAI, collaborating across teams to enhance security measures. Focus on operational standards and program development for effective security initiatives.
Senior SOC Analyst leading advanced security monitoring and response across various platforms. Collaborating with teams to strengthen security posture and mentor junior analysts.
SOC Analyst developing cybersecurity solutions at Capgemini for leading organizations. Engaging in incident response and security operations in a collaborative environment with global colleagues.
Security Operations Engineer focused on secure coding practices and incident response at LUZA Group. Collaborating with security, engineering, and DevOps teams to reinforce organizational security posture.