
Security Operations Center Specialist
Posted 3 days ago

Posted 3 days ago
This is a fully remote position, open to applicants in United States.
• Oversee security events and incident logs from a variety of sources, including network devices, servers, endpoints, and security tools.
• Detect and assess possible security incidents and anomalies, taking necessary actions to investigate and escalate as needed.
• Engage in incident response efforts, covering containment, eradication, and recovery procedures.
• Collaborate closely with incident response teams and IT personnel to reduce the impact of security incidents and lower the risk of recurrence.
• Remain informed about the latest cybersecurity threats and attack vectors.
• Evaluate threat intelligence reports to proactively identify and respond to emerging threats.
• Operate and manage security tools such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention Systems), antivirus, and other security-related solutions.
• Conduct thorough analyses of security incidents, execute digital forensics, and document findings for future reference and enhancements.
• Create and deliver comprehensive incident reports, including root cause analyses and suggested remediation actions, to senior management and stakeholders.
• Establish continuous monitoring processes to ensure persistent visibility into the organization's security posture.
• Perform regular audits of security controls and configurations.
• Work in conjunction with the security awareness team to contribute to the development of security training materials and awareness campaigns for employees, improving the overall security culture.
• Ensure adherence to established security policies, standards, and procedures.
• Assist in the creation and upkeep of security policies as needed.
• Provide clear and concise shift handover reports to SOC colleagues, ensuring accurate communication of ongoing incidents and relevant information.
• Capability to maintain TS/SCI clearance.
• Over 10 years of experience (a Bachelor’s degree in a relevant field may substitute for 5 years of relevant experience).
• Demonstrated experience in a Security Operations Center (SOC) or a similar role, with practical experience in security monitoring, incident detection, and response.
• Comprehensive understanding of cybersecurity principles, the threat landscape, and attack vectors.
• Familiarity with security tools and technologies like SIEM, IDS/IPS, antivirus, and endpoint detection and response (EDR) systems.
• Knowledge of incident response procedures and methodologies, including forensic analysis.
• Strong analytical and problem-solving abilities, with the capability to make swift decisions under pressure.
• Exceptional communication skills for effective collaboration with team members, management, and external stakeholders.
• Required DoD 8140 compliant certification such as CompTIA Security+.
• Other relevant cybersecurity certifications, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), are beneficial.
• Familiarity with industry compliance standards (e.g., NIST) and relevant regulations (e.g., GDPR, HIPAA) is a plus.
• Willingness to work in a 24/7 rotational shift schedule, including weekends and holidays.
• Healthcare
• Wellness
• Financial
• Retirement
• Family support
• Continuing education
• Time off benefits
MRO
Mozilla
Xepelin
Veeam Software
Get handpicked remote jobs straight to your inbox weekly.