Cybersecurity SOC Analyst I
We are seeking a full-time Cybersecurity Security Operation Center (SOC) Analyst. Our ideal candidate is a positive, highly motivated, results-driven individual; a fast learner who is tech savvy, knowledgeable of security best practices, and possesses critical thinking skills.
TO APPLY EMAIL: careers@thecyberdig.com
THE DIG OFFERS
-
Outstanding benefits package (including medical, dental and vision)
-
Retirement plan with matching company contribution
-
Generous holiday and paid time off schedules
-
Ongoing professional development training
-
Exciting work opportunities through sales and support of innovative technology and tools.
ABOUT US
The Digital Investigative Group, better known as the DIG, is a Montana-based managed cybersecurity provider (MSSP). We provide cybersecurity services to public and private organizations across Montana to ensure our clients and their systems are safe, secure, and compliant. Our services include Security Operations, Incident Response, Digital Forensics, Compliance and Advisory services, and auditing of systems, networks, and compliance frameworks.
STATUS: Full-Time, Long-term (40 hours/week)
LOCATION: Helena, MT
SCHEDULE: We support clients M-F from 8-5 with occasional emergency after hours work required.
PAY RANGE: $ 18-25 Final hourly pay rate will be based on a variety of factors, including experience, education, and training.
WHAT YOU NEED TO APPLY
-
Cover Letter
-
Resume
-
Email your Cover Letter and Resume to careers@thecyberdig.com
WHAT YOU WILL DO
PROTECT
-
Utilize security incident event management (SIEM), security orchestration automation and response (SOAR), and endpoint detection and response (EDR) to correlate data from various logs and data sources to detect anomalous, suspicious, or malicious behaviors.
-
Proactively take action to protect both our clients and our internal IT environment from attack by performing threat hunting research and by managing vulnerabilities.
-
Follow Security Operations Center (SOC) processes and provide support to our Team during alerts, events, and incidents.
RESPOND
-
Monitor, detect, analyze, and respond to security alerts, events, and incidents.
-
Conduct tuning activities to mitigate false positives or noisy alerts.
REPORT
-
Provide written and verbal actionable reports and updates to our internal team and clients.
OTHER
-
Provide off-hours and ad-hoc shift support as needed.
-
Occasional travel may be required in support of our clients.
-
Support major projects, including new plans, capacity, life-cycle management, new products and features, and integration.
-
Any other duties needed to support our SOC.
ESSENTIAL SKILLS AND EDUCATION
-
Associate degree in Cybersecurity, Computer Science, Networking, Information Technology, or equivalent experience working as a member of an enterprise IT Team.
-
Experience troubleshooting, responding to alerts, and providing support.
-
Experience collaborating with stakeholders and articulating IT information to non-technical staff in an understandable way.
-
Strong knowledge of Security Fundamentals and a passion for learning about technology and cybersecurity.
-
Knowledge of incident response life cycle and the steps needed to respond to suspected incidents.
-
Knowledge of TCP/IP Protocols, network analysis, and network/security applications
-
Knowledge of common Internet protocols and applications
-
Exhibit a proactive work ethic, looking for innovative ways to solve complex problems.
-
Ability to think quickly on your feet, pivot as needed, and to develop strong relationships.
-
Must possess exceptional organizational skills and the ability to handle multiple tasks concurrently.
-
A valid driver’s license and clean driving record (be insurable).
-
Must pass a back-ground check
-
Other combinations of education and experience will be considered on a case-by-case basis.
BONUS POINTS
-
GIAC, GCIH, Network+, Security+, or other related cybersecurity certifications.
-
Internship or strong project experience working in the cybersecurity field.
-
Foundational understanding of SOC operations, SIEM infrastructure, SOAR technology, EDR and how they all work together to protect enterprises.
-
Able to read and write basic scripts. Ideal languages include PowerShell, Python, VB, C#, and Java (any language is permissible).