Senior SOC Analyst

Job description

We re looking for inspired and motivated technical contributors to join the DigitalOcean team as Senior Security Operations Analysts . In this role, you will be a crucial member of DigitalOcean s security team, reporting to the Lead of Security Abuse Operations. You will improve the security posture of DigitalOcean both reactively and proactively, as well as handle incidents and make the internet a safer place. Senior Security Operations Analysts must identify vulnerabilities, build tactical and strategic mitigation plans, and eliminate bad actors inside the DigitalOcean platform.

What You ll Be Doing:

• Analyzing network traffic to identify compromised systems, negate denial of service attacks, and pinpoint resource abuse.
• Investigate, identify and prevent, or mitigate abusive activities such as intrusion attempts, DDoS, malware distribution, phishing attacks, etc. originating from the DigitalOcean Platform.
• Handle live intrusions and incident response cases, in a customer-facing and transparent manner, to minimize the impact of bad actors on the internet.
• Locating trends in abuse vectors, communicating with leadership to apprise of the extent and advocating for appropriate product changes to prevent future occurrences.
• Vetting abuse claims, responding to reporters, and helping customers get back on the platform.
• Monitoring and analysis of security events with the use of SIEM, NIDS, and antivirus. Triage security events and incidents, detect anomalies, and report/direct remediation actions.
• Work within a queue management system with specific daily targets on the number of customer contacts completed with an efficient resolution.
• Building strong relationships with the other technical teams across our engineering and infrastructure functions.
• Coaching and mentoring other skilled security practitioners across application, information, and infrastructure security.