Job Description
What you’ll be working on:
- Perform daily operation of monitoring networks for security events/incidents to detect active threats, intrusions, and/or compromises.
- Respond to security alarms and analyze and escalate incidents by process or management.
- Engage on incident management and response efforts.
- Manage vulnerability scanning processes.
- Management of Endpoint Protection and Email Protection services.
- Tier one support of SIEM engineering.
- First line of operational support for requests with Barracuda XDR’s security services.
- Support general inquiries/requests relevant to security concerns and recommendations.
- Responsible for understanding the ever-changing global threat landscape and tracking changes in this area, as well as understanding the direct or indirect impact to the customer base by publishing threat advisories on a regular basis.
- Engage in proactive security efforts by conducting threat hunting, attack and defend exercises, threat (malware, vulnerability) research, etc.
- Continuously advance our SOC maturity through participation in our agile projects.
- Perform customer management by understanding, identifying, and mitigating issues with customers security.
- A minimum of 2 years of experience.
- Excellent verbal and written communication skills,
- Experience troubleshooting in a technical environment.
- Analytical thinking and problem-solving skills.
- Customer service skills, phone and remote support experience.
- Ability to work evening, weekend, and holiday shifts.
- Proficiency with ticketing systems.
- Working knowledge of Windows, Linux, Mac operating systems.
- Experience with basic networking principles.
- Experience with incident response and analysis of attack vectors such as:
- Ransomware
- Business Email Compromise
- Phishing
- Botnet
- DDoS
- SQL Injection
- Supply Chain Attacks
- Mobile Threats
- Experience with common SOC tools such as:
- SIEM
- SOAR
- Other Log/Packet Analysis applications
- EDR
- Email Security
- Threat Intelligence
- Vulnerability Scanner
- Sandbox Environments
- Knowledge with cloud computing.
- Programming skills preferred.
- Equity, in the form of non-qualifying options
- High-quality health benefits
- Retirement Plan with employer match
- Career-growth opportunities
- Flexible Time Off and Paid Time Off benefits
- Volunteer opportunities