SOC Analyst II

  • Job type

  • Location

    North Carolina
  • Profession

  • Industry

    Technology & Internet Services
  • Pay

    $50.00 - $60.00/hr.

SOC Analyst II – Contract or CTP – Greensboro, NC – $50.00 - $60.00/hr.

The final salary or hourly wage, as applicable, paid to each candidate/applicant for this position is ultimately dependent on a variety of factors, including, but not limited to, the candidate’s/applicant’s qualifications, skills, and level of experience as well as the geographical location of the position.

Applicants must be legally authorized to work in the United States. Sponsorship not available.

Our client is seeking a SOC Analyst II in Greensboro, NC.

Role Description
• The SOC Tier II Analyst is responsible for monitoring, analysis, response, and escalation of security incidents and events. The Security Operations Center is the first line of detection and defense which actively monitors the SIEM (Security Information & Event Management), reviews log and event data, and works tickets associated with said data. Providing research using internal and open source tools, resolving and escalating incidents using established policies and procedures.

• Monitoring and analysis of logs, alerts, and external data sources to determine any security and/or operational impact to the organization.
• Performs research on security events and threat intelligence data using internal and open source tool. Performing proactive threat research and validation for security event data generated from monitoring tools and/or manual analysis.
• Creation of Reference Sets within the SIEM tool to assist Tier 1 SOC Analysts with threat research.
• Monitoring IPS (Intrusion Prevention System) events and performing analysis on the data providing recommended actions or escalating to incident analysts for further review.
• Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures.
• Acts as an escalation point for the Tier I SOC Analysts. Resolves or escalates cyber security incidents and events as part of the established policies and procedures.
• Assists with the containment of threats and remediation of the environment during or following an incident.
• Collaborates with technical teams to identify, resolve, and mitigate security events as part of the Incident Response Plan.
• Evaluates unwarranted changes within the environment as part of monitoring rules within the SIEM tool.
• Creates and executes SOC compliance reports as necessary for risk and compliance teams.
• Monitors SIEM environment for Global organization, providing resolution to events and incidents triggered within the SIEM tool as part of the day to day operations.
• Ensures that critical infrastructure is reporting into the SIEM and reports any systems that are not reporting to the appropriate team/s.
• Performs documentation of event analysis and records this data within our Incident Tracking tool. Ensuring all relevant data is captured within each incident.
• Assists with the triage of service requests from internal teams within the organization through our incident ticketing system.
• Enhances detections, alerts, and other cyber event correlation rules within the SIEM to reduce false positives.
• Approves various block requests originated by the Tier I SOC Analysts.
• Manages the SOC documentation repository by providing oversight of the annual SOC Documentation review process. Provides recommendations for procedural updates and improvements. Reviews recommendations proposed by Tier I SOC Analysts.
• Represent the Security Operations team in various SOC, Incident Response, and Cyber Security projects.

Skills & Requirements

• Years of Related Professional Experience: 3+ years
• Experience executing security incident handling processes and procedures.
• Working knowledge of Networking fundamentals including but not limited to; The OSI Model, TCP/IP, DNS (Domain Name System), HTTP, SMTP), System Administration and/or Architecture.
• Proficient understanding of various Operating Systems and their architectures: Windows, Unix/Linux and OSx.
• Previous experience operating and tuning SIEM tools, IBM QRadar experience preferred.
• Effective communication skills with the ability to work in a highly collaborative environment across many different disciplines.
• Strong relationship skills and collaborative style to enable success across multiple business partners with a focus on building partnerships.
• Excellent analytical and problem-solving skills.
• Scripting capabilities in bash, python, ruby considered a plus.
• A bachelor’s degree in computer science, information systems or other related field (preferred); or equivalent work experience.
Professional security management certifications such as; Global Information Assurance Certification (GIAC) certifications such as GCIA, GCIH, Certified Information Systems Security Professional (CISSP) or other similar credentials are a plus.
• Minimal travel requirements
Benefits/Other Compensation

This position is a contract/temporary role where Hays offers you the opportunity to enroll in full medical benefits, dental benefits, vision benefits, 401K and Life Insurance ($20,000 benefit).

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there’s a position you really want, you’re fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays’ guiding principles is ‘do the right thing’.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text 813.336.5570.

Drug testing may be required; please contact a recruiter for more information.


Apply for this job