Cybersecurity Analyst - SOC

Job Overview Kforce is seeking a Mid Level Cyber Security Analyst to work on the CISO Security Operations Center team supporting the rapid threat detection and response mission. This role is located in Austin, TX and is hybrid onsite – 3 days a week. As a Cybersecurity Analyst you will perform security monitoring, investigations, and response to thwart internal and external threats to the client’s environment. The Security Operations Center has a global footprint and is responsible for 24x7 monitoring and incident response, collaborating with the Cyber Security Rapid Response Incident Response Team and other security teams to support detection, triage, incident analysis, containment, remediation and reporting of events/incidents while balancing business priorities and emerging threats to ensure the confidentiality, integrity and availability of information assets. Responsibilities Drive the global security monitoring and rapid response mission across the team Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment Model effective communication and response to internal stakeholders within investigations Improve runbooks, processes and response capabilities Resolve problems independently and understand escalation procedures Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents Collaborate with technical leads: Engineering, Operations, Service Desk, Applications and BISOs on matters related to security monitoring across the global footprint Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to Rapid Response Requirements 2+ years of information security related experience Experience with security operations, security engineering, risk management, vulnerability management, threat analysis, security auditing, incident response and other information security practices preferred Strong knowledge of cloud computing and network protocols Knowledge of industry information security standards/frameworks (NIST, MITRE, FEDRAMP) Experience working with SIEM tools and log analysis Knowledge of EDR tools and endpoint analysis Excellent written and oral communication skills with the ability to effectively communicate with information technology professionals as well as senior management and auditors High level of personal integrity, and the ability to professionally handle confidential investigations and exude the appropriate level of judgment Preferred Bachelor's degree Relevant IT security industry recognized certifications (CASP, CISSP, GCIH, GCIA, GMON, OSCP, etc.) 4+ years of information security experience in a security operations or engineering role Strong understanding of networking protocols and firewall management Enterprise experience in incident response or security operations environment Experience with programming or scripting languages Experience tuning rules within SIEM tools like Qradar Strong experience with EDR platforms, such as Crowdstrike, Microsoft Defender 365, Uptycs or Carbon Black, conducting analysis as part of investigations Experience with cloud computing platforms, e.g. IBM Cloud, Amazon Web Services, Azure Experience with host virtualization platforms, e.g. VMware, Hyper‑V Experience with application container technologies, e.g. Kubernetes Purple team experience conducting attacker simulation and adversary emulation System administration skills for Windows and Linux Windows, Linux and/or Mac forensics Compensation The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future. Benefits We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave. Other Compensation This job is not eligible for bonuses, incentives or commissions. Equal Opportunity Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. #J-18808-Ljbffr Kforce Inc