Lead SOC Analyst

This is a position in our Cyber Security Operation Center and reports to the Director of Security Operations. This job is currently remote. Position is for the day shift. May include weekend work - Saturday, Sunday, and holidays that fall during the scheduled shift.

This job is for a lead cyber security analyst / incident responder who will perform in-depth analysis on security events, intrusion detection, malware analysis, threat hunting and all phases of security event monitoring and incident response. Job will require complete monitoring, triage and incident response functions in a combined SOC/CIRT environment. Will use advanced SOC / CIRT security platforms and processes on a daily basis. Training will be given on specific platforms, however candidate should be an expert in SOC / CIRT processes and general platforms already. Job will entail working closely with team members to run an investigation from start to finish, ensuring collaboration with any appropriate teams and stakeholders at all levels, There will be occasional presentations, audit support and regular documentation of investigations and project deliverables so strong verbal and written communications skills are critical.

8-11 Years Experience in Cyber Security required.

This is currently a REMOTE day shift position in our SOC. May include weekend work on a Saturday or Sunday.

• Successful candidate must be a motivated self-starter with a highly inquisitive and analytic mindset.
• Relevant cybersecurity subject matter expertise - especially in information security, network security, security event triage, intrusion analysis, malware, computer networking TCP/IP, and anomalous behavior.
• Experience as a security operations center (SOC) analyst
• Experience and skills in: continuous monitoring, information security alerting, security event triage, intrusion analysis, threat trends, malware, and anomalous behavior.
• Demonstrated experience with security information and event management (SIEM), security orchestration and automated response (SOAR), and other security technologies
• Experience in, or willingness to quickly learn, at least one security tool type such as IDS/IPS, network access control, firewall, anti-malware, etc
• Attention to detail and excellent analytical and problem-solving skills.
• Advanced written and verbal communication skills.
• Excellent organizational skills and ability to set priorities and handle multiple projects concurrently.
• Excellent analytical and problem solving skills
• Teamwork and collaboration skills are critical. This is not a position for someone who prefers to work alone.
• This position requires a bachelors degree in Cyber Security, Information Technology, Computer Science, Business or relevant work experience in application security analysis, systems analysis and/or testing background and experience with direct Business Analyst experience.
• Excellent interpersonal skills including the ability to build consensus and agreement and bring resolution to contentious issues and entrenched interests.
• Must demonstrate understanding of industry standard security best practices
• Excellent knowledge of MS Office tool set - MS Word, MS Excel, MS Project and MS Visio. Preferred:
• Security Certification.
• Passion for Cyber Security
• Hands on experience with some or all: NetFlow and full packet capture technology, Intrusion Detection Systems (IDS), firewalls, AV, and other similiar network security tools
• Experience with healthcare insurance industry, especially BCBS plans.
• Effective presentation, negotiation and influencing skills to interface with all levels of management and to facilitate large meetings across the CareFirst organization. Advanced written and verbal communication skills are critical.

Required Skills :
Basic Qualification :
Additional Skills :
Candidate must be your W2 Employee :No
Interview Process :
Additional Keywords :
Degree Requirements :
Certification Requirement :
Minimum Experience (In Years) :0
Travel Requirements :