SOC Threat Hunt Analyst
Arlington, Virginia
Employer: Insight Global
Industry: Security Engineering
Salary: Competitive
Job type: Part-Time
Understand and utilize Threat Intelligence in the creation, planning, and leading of Threat Hunt actions.
Collaborate with cross-functional teams including network, endpoint, security, and IT operations to understand and translate customer requirements and expectations into actionable plans.
Develop and maintain detailed documentation of SOC design, architecture, and processes for client reference.
Provide training and support to SOC analysts and other team members on the use of tools, processes, and procedures.
Assist in the creation of incident response plans, threat management processes, and security policies in alignment with client requirements.
Stay up-to-date with the latest cybersecurity trends, threat intelligence, and best practices to ensure SOC is well equipped to response to emerging threats.
Participate in continuous improvement initiatives to enhance the effectiveness and efficiency of the SOC.
Assist in incident response actions when required.
Strong analytical and problem-solving skills with the ability to think critically and adapt to evolving situations.
Excellent communication skills with the ability to effectively convey technical information to both technical and non-technical audiences.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
A Bachelor's degree or minimum of 4 years prior relevant experience.
Ability to obtain public trust clearance.
In-depth knowledge of MS Sentinel.
Experience configuring log sources, normalizing data, and managing threat intelligence feeds.
Strong understanding of threat detection, incident response, and SOAR concepts.
Excellent communication and interpersonal skills to effectively collaborate with stakeholders.
Ability to work independently and as part of a team.
Nice to Have Skills & Experience
Understanding of M-21-31 requirements, NIST Cybersecurity Framework, CISA Incident and Vulnerability Playbooks, and CISA BOD requirements such as BOD 22-01.
Understanding of a variety of both network and end point defenses.
Experience developing Threat Hunt action planning and Incident Response.
Experience configuring UEBA to enhance the SOCs ability to identify anomalous behaviors.
Experience using python and AI/ML frameworks for cyber analytics.
Experience establishing effective SOC metrics, alarms, reports and dashboards.
Experience with security aspects of M365, Azure, the use of ServiceNow and ServiceNow workflows, and CISA CDM tools.
Relevant certifications such as Microsoft SC-200.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Collaborate with cross-functional teams including network, endpoint, security, and IT operations to understand and translate customer requirements and expectations into actionable plans.
Develop and maintain detailed documentation of SOC design, architecture, and processes for client reference.
Provide training and support to SOC analysts and other team members on the use of tools, processes, and procedures.
Assist in the creation of incident response plans, threat management processes, and security policies in alignment with client requirements.
Stay up-to-date with the latest cybersecurity trends, threat intelligence, and best practices to ensure SOC is well equipped to response to emerging threats.
Participate in continuous improvement initiatives to enhance the effectiveness and efficiency of the SOC.
Assist in incident response actions when required.
Strong analytical and problem-solving skills with the ability to think critically and adapt to evolving situations.
Excellent communication skills with the ability to effectively convey technical information to both technical and non-technical audiences.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
A Bachelor's degree or minimum of 4 years prior relevant experience.
Ability to obtain public trust clearance.
In-depth knowledge of MS Sentinel.
Experience configuring log sources, normalizing data, and managing threat intelligence feeds.
Strong understanding of threat detection, incident response, and SOAR concepts.
Excellent communication and interpersonal skills to effectively collaborate with stakeholders.
Ability to work independently and as part of a team.
Nice to Have Skills & Experience
Understanding of M-21-31 requirements, NIST Cybersecurity Framework, CISA Incident and Vulnerability Playbooks, and CISA BOD requirements such as BOD 22-01.
Understanding of a variety of both network and end point defenses.
Experience developing Threat Hunt action planning and Incident Response.
Experience configuring UEBA to enhance the SOCs ability to identify anomalous behaviors.
Experience using python and AI/ML frameworks for cyber analytics.
Experience establishing effective SOC metrics, alarms, reports and dashboards.
Experience with security aspects of M365, Azure, the use of ServiceNow and ServiceNow workflows, and CISA CDM tools.
Relevant certifications such as Microsoft SC-200.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Created: 2024-09-06
Reference: 378887
Country: United States
State: Virginia
City: Arlington
ZIP: 22209
Similar jobs:
-
Cyber Threat Hunt Analyst
Leidos Holding in Ashburn, Virginia💸 $101400.00 per year -
Senior Cyber Threat Hunt Analyst
Leidos Holding in Ashburn, Virginia💸 $101400.00 per year -
Cyber Threat Hunt Analyst
Leidos Holding in Ashburn, Virginia💸 $101400.00 per year -
Cyber Threat Hunt Analyst
Leidos Holding in Ashburn, Virginia💸 $101400.00 per year