Security Operations Center Analyst - 100% REMOTE

Company: Apex Systems
Location: Omaha
Posted on: February 23, 2021

Job Description:

Title: SOC Analyst 100% Remote Day to Day: --- Expecting them to respond to events --- 80% of events they will receive, there is a playbook that tells them how to proceed. --- The team has built out playbooks in confluence and Onenote notebook. A lot of pages organized around their services, very well put together. There are 8 different system they are monitoring. There could be 1-2 new services upcoming though. Digital shadows (internal team working on set up and configuration. They will train the CES on this). --- There will be times new events will come up that don't have a playbook on how to proceed. It is expected that they will still handle the event and then they will be asked to create a playbook for similar future events so everyone knows how to handle it. --- As they see events they respond and follow their process --- Not having to fully resolve events if it gets beyond their skillset. It will feed into Tier 3 if that happens. --- Participating in conversations and meetings. Looking for: --- Security Operations (SOC) --- Network Security --- Eyes on Glass security monitoring in SOC environment --- LogRhythm, Tanium, Cisco AMP, Trend Micro --- Must have general level of experience with log review in a security context. --- Monitoring and triaging incidents. Must be able to draw line between when to call Incident Responders or Engineering teams. --- 2-3 years of experience. --- Operations tool: LogRhythm. Familiar with another tool they can probably pick up pretty quick. --- Alerts are coming in from Skout, Cisco AMP and Office 365 --- Separate applications running on their machines. LogRythm will be main one, but they need to watch for alerts on CISCO AMP, Emails (Skout), and OFFICE-365 has its own dashboard, Digital Shadows will have a separate application to look at --- Materials using for guidance are in OneNote and some in Confluence. Use this for management of events as well. --- Interest in growing their knowledge of Cyber Security Operations. Keen to learn. --- Good writing skillsNice to have: --- SANS certs indicating background in security. --- Experience in operations associated with the cloud Biggest things to look for in a candidate: - Experience with LogRyhtm, Cisco AMP, and Office 365. Here is where the alerts will come to them so need monitoring experience with these tools. - Ensure candidate is good with the shift SHIFT: - Thursday to Monday - 12:00pm - 8:00pm CSTIf interested please send resume to Noah at EEO EmployerApex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or - provided by Dice

Keywords: Apex Systems, Omaha , Security Operations Center Analyst - 100% REMOTE, Professions , Omaha, Nebraska