SOC Analyst

Role: SOC L1 Analyst

Location - New Jersey, NJ – Onsite

Number of Position - 4

CTH

Overview:

As a SOC L1 Analyst, you will be the first line of defense in the Security Operations Center, responsible for monitoring, analyzing, and responding to security alerts and incidents. You will work with a range of security tools and technologies to protect the organization’s information assets from cyber threats.

Key Responsibilities:

1.Monitor Security Alerts:

Continuously monitor security alerts and events from various sources, including Cisco AMP, Splunk, Duo, CASB, CrowdStrike, ExtraHop, and other security tools.

Perform initial triage of security incidents to determine severity and impact.

2.Incident Response:

Respond to security incidents in a timely manner, following predefined incident response procedures.

Escalate incidents to L2 analysts or other appropriate personnel when necessary.

3.Log Analysis:

Analyze logs and alerts from various systems and devices to identify potential security threats.

4.Endpoint Security:

Use Cisco AMP and CrowdStrike to monitor and protect endpoints from malware and other threats.

Assist in the investigation and remediation of endpoint security incidents.

5.Network Traffic Analysis:

Use ExtraHop to analyze network traffic for suspicious activities.

Identify and respond to network-based threats.

6.Ticketing and Documentation:

Document security incidents and responses in JIRA and ServiceNow.

Maintain accurate and detailed records of incidents and actions taken.

7.Continuous Improvement:

Stay up to date with the latest cybersecurity trends and threats.

Participate in training and development activities to improve skills and knowledge.

Qualifications:

Bachelor’s degree in computer science, Information Security, or a related field, or equivalent experience.

Up to 3 years of experience in a SOC or similar security role.

Familiarity with security tools such as Cisco AMP, Splunk, Duo, CASB, CrowdStrike, ExtraHop, ServiceNow, and JIRA.

Basic understanding of network and endpoint security principles.

Strong analytical and problem-solving skills.

Excellent communication and teamwork abilities.

Ability to work in a fast-paced and dynamic environment.

Preferred Certifications:

CompTIA Security

Certified SOC Analyst (CSA)

Cisco Certified CyberOps Associate

Other relevant cybersecurity certifications