Buchanan Technologies is currently on the hunt for IT Security Analysts to join our team. Our environment is spread across the globe with office locations in Grapevine TX, Wichita KS, Mississauga Ont, Charlottetown PE, Sophia Bulgaria, and various remote users across the world.

Responsibilities

Performs network security monitoring and incident response for numerous clients.
Maintains records of security monitoring and incident response activities, utilizing case management and ticketing technologies.
Provide analysis and trending of security log data from a large number of heterogeneous IT security devices
Monitors and analyzes Early Detection/Response Systems (EDR) and Security Information and Event Management (SIEM) to identify security issues for remediation.
Creates, modifies, and updates Security Information Event Management (SIEM) rules.
Recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.
Evaluates/deconstructs malware (e.g. obfuscated code) through open-source and vendor-provided tools.
Communicates alerts to clients regarding intrusions and compromises to their network infrastructure, applications, and operating systems.
Prepares briefings and reports of analysis methodology and results.
Creates and maintains standard operating procedures and other similar documentation; Create/review/modify documentation as needed, to include any process or procedure and thus ensure it’s up to date and standard
Consolidates and conducts a comprehensive analysis of threat data obtained from classified, proprietary, and open-source resources to provide indication and warnings of impending attacks against unclassified and classified networks.
Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty.
Assist Entry-Level SOC analysts to help them build stronger skills
Assist Team Leads with reporting, projects, administrative work as needed
Education and Qualifications:

Experience in SOC OR IT administration with Security in Scope of work required.
Willingness to learn and continually improve skills to ensure the success of the business and its objectives.
Excellent analytical and problem-solving skills as well as interpersonal skills to interact with customers, team members, and upper management
Excellent understanding of cybersecurity incident response and network security monitoring
Fundamental understanding of computer networking (TCP/IP), knowledge of Windows, Linux, and information security.
5+ years of experience in SOC support.
Experience in a ticketing and monitoring systems
Ability to analyze data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents
Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products
Knowledge of Endpoint Detection and Response (EDR) and SIEM technologies.
Knowledge of phishing email investigation and resolution
Must be capable of passing a basic background investigation
Excellent English written and verbal skills.
After-hours availability required
Preferred Qualifications:

Associates Degree in Computer Information Systems
CompTIA Network + Certification
CompTIA Security + Certification
Certified Ethical Hacker Certification
Certified SOC Analyst Certification
Preferred Information Security professional designations such as CISSP, CISM, CISA
Buchanan Technologies provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, protected veteran status, or genetics. In addition to federal law requirements, Buchanan Technologies complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

Месторабота: София

Кандидатствай: https://www.jobs.bg/job/6770962