Description

1.1 Level 1 Security analyst
1.1.1 The primary job function of a SOC Level-1 Analyst is to handle the daily operational monitoring of information security events on the Logrhythm SIEM console. The Level-1 Analyst also functions as an intrusion analyst to examine security events for context, appropriateness, and criticality. The Level-1 Analyst functions as an information security researcher to assist personnel at the FEDNet SOC and Shared service entities with insight and understanding of new and emerging information security threats.
1.1.2 Key Responsibilities: the key responsibilities of the Level 1 security analyst shall be as follows:
• Investigate incidents using triage, event graphs, annotations, cases, dashboard, and reports;
• Follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents.
• Recommend and implement responses
• As a team member to deliver and support of a 24x7 security analysis and monitoring
1.1.3 Required experience: 2+ years’ experience of one of the following:
• Network operations or engineering
• System administration on UNIX, Linux, or Windows
• General technical skills, includes TCP/IP knowledge, networking and security product experience
• Strong written and verbal communication skills
• Willingness to acquire in-depth knowledge of network- and host security technologies and products (such as firewalls, Network IDS/IPS, AV) and continuously improve these skills
• Demonstrated ability to work in a team environment, able to coach and mentor other team members
• Understanding of Security policies, goals and industry best practices
• Analysis of event traffic patterns and device log output
• Strong investigation, remediation, and reporting procedures

Education

Any Graduate