Job Description

Senior SOC Analyst

Harrisburg, Pennsylvania- Hybrid- Locals Only

Contract on C2C/W2

Visa : USC & GC

Moi : Skype

Job Purpose and Summary
The Senior Security Operations Center (SOC) Analyst is responsible for designing, implementing, and optimizing Client's NextGen SOC infrastructure. This role involves developing a comprehensive SOC architecture that enhances threat detection, incident response, and threat hunting capabilities in a hybrid cloud environment. The Senior SOC Analyst works collaboratively with cross-functional teams to ensure alignment with industry best practices, regulatory requirements, and organizational goals, operating at a high level of complexity with minimal supervision.

Key Responsibilities

• SOC Architecture Development : Design and maintain a robust SOC infrastructure that supports advanced threat detection, proactive monitoring, and efficient incident response.
• Tool Evaluation and Integration : Evaluate and integrate security tools and platforms such as SIEM, EDR, SOAR, and NDR to enhance SOC operations.
• Operational Playbooks and SOPs : Create and maintain incident response playbooks, standard operating procedures (SOPs), and runbooks for streamlined SOC workflows.
• Capability Assessments : Conduct SOC capability assessments and maturity analysis to identify gaps and recommend improvements.
• Monitoring Optimization : Establish and refine monitoring strategies and use cases to improve proactive threat detection.
• Stakeholder Collaboration : Build strategic relationships with internal and external stakeholders to align SOC operations with broader security objectives.
• Regulatory Compliance : Ensure SOC compliance with regulatory frameworks, including adherence to NIST SP 800-53 standards (IR, AU, SI, AC, CA), and support audit readiness.
• Emerging Threat Awareness : Stay updated on emerging threats and trends, recommending updates to SOC architecture and processes as needed.

Technical and Operational Expertise

• Threat Reporting and Metrics : Prepare detailed threat reports using threat intelligence feeds and develop metrics/dashboards for reporting to senior management.
• Threat Hunting : Conduct scenario-based retroactive threat hunting and continuous monitoring of security solutions.
• Incident Analysis and Response : Analyze alerts and log events to identify potential threats, initiate incident response procedures, and document evidence.
• Vulnerability Management : Identify threats and vulnerabilities, correlating data to detect unauthorized access or potential risks.
• Forensic Investigations : Lead forensic investigations as required, evaluating the severity of events using an in-depth understanding of exploits and vulnerabilities.

Collaboration and Mentorship

• Team Guidance : Provide technical mentorship and guidance to SOC analysts and security engineers within the ESO team.
• Control Evaluation : Collaborate with teams to design technical controls and perform self-assessments of security controls to identify gaps and ensure effectiveness.

Tools and Platforms

• Monitoring Systems : Work with tools such as LogRhythm, AWS Security Hub, AWS Guard Duty, MS Defender for Endpoints, and Trend Micro Vision One.
• Security Operations Tools : Enhance SOC capabilities through the use of SIEM, EDR, SOAR, and NDR platforms.

Qualifications and Skills

• Proven experience in designing and optimizing SOC infrastructure in hybrid cloud environments.
• Deep understanding of threat detection, incident response, and vulnerability management.
• Proficiency in regulatory frameworks (e.g., NIST SP 800-53).
• Experience with advanced security tools and platforms (SIEM, EDR, SOAR, etc.).
• Strong analytical and problem-solving skills with the ability to perform retroactive threat hunting and forensic investigations.
• Excellent communication skills for reporting, stakeholder collaboration, and mentorship.

This position offers the opportunity to play a key role in enhancing organizational security, driving innovation in SOC operations, and protecting against emerging cyber threats.

Regards,

Ayush Sharma

Sr. US IT Recruiter

321-323-1062 | Ext:149

[email protected] | G-talk: [email protected]

Job Tags

Similar Jobs