Part time: Must be able to obtain security clearance (USC)
Shift 1: Sat & Sun 9am-9pm
Shift 2: Sat & Sun 9pm-9am
Job Overview:
The Tier 2 Security Operation Center (SOC) Analysts are responsible for utilizing SIEM technologies to conduct in-depth investigations and threat hunting activities. Candidates must have experience with tools such as Devo, Netwitness, Azure Sentinel, or other SIEM technologies. A solid understanding of ticket workflow and handling is essential. This role primarily supports after-business-hours operations, including evenings, overnights, weekends, and holidays.
Responsibilities:
- Determine service impact of security events.
- Alert customers to potential malicious activity.
- Manage tickets via the ticketing system.
- Create tickets for various SOC needs.
- Escalate tickets and activities as required.
- Conduct research and data collection on events of interest.
- Engage Tier 3 Analysts, Network Operations Center (NOC), Network Engineers, and/or the CSIRT when necessary.
- Document and escalate incidents, including event history, status, and potential impact.
- Analyze security alerts from various sources and determine possible causes.
- Provide timely detection, identification, and alerting of possible attacks or misuse activities.
- Conduct research and correlation across diverse data sets.
- Assist in constructing signatures for cyber defense tools in response to threats.
- Develop cybersecurity recommendations based on significant threats and vulnerabilities.
- Work security tickets within established SLAs and escalate as needed.
- Provide support, guidance, and mentorship to SOC personnel.
- Contribute to process documentation and training materials.
Qualifications:- Strong communication skills, both written and verbal.
- Three to five years of experience in Security Incident Response, SOC, or threat analysis.
- Experience with enterprise and/or cloud SIEM technologies.
- Ability to work across multiple customer and bespoke systems.
- Must pass CJIS and other background checks.
- Strong documentation and troubleshooting skills.
- Understanding of ticket flow and network traffic analysis.
- CompTIA Security+ certification or higher.
- US Citizenship required.
Preferred Qualifications:- Certified Ethical Hacker (CEH) or equivalent.
- CompTIA Cybersecurity Analyst (CySA+) or equivalent.
- Splunk Power User Certification, Devo Platform User Certification, or Netwitness Logs and Network Analyst Certification.
- Additional certifications such as CompTIA Networking+, cloud tool certifications, etc.
Qualifying Experience and Attributes:- Experience with SIEM tools like Devo, RSA Netwitness, Splunk, Azure Sentinel, Q-Radar, ArcSight, etc.
- Familiarity with the cyber kill chain and Mitre frameworks.
- Knowledge of cybersecurity principles, threats, vulnerabilities, and incident response methodologies.
- Understanding of network security architecture, encryption algorithms, and cryptographic key management.
- Proficiency in packet-level analysis using tools like Wireshark and tcpdump.
- Knowledge of TCP/IP protocols, DNS, and directory services.
- Ability to interpret information collected by network tools.
- Familiarity with escalation, incident management, and change management processes.
About PTR Global: PTR Global is a leading provider of information technology and workforce solutions. PTR Global has become one of the largest providers in its industry, with over 5000 professionals providing services across the U.S. and Canada. For more information visit www.ptrglobal.com
At PTR Global, we understand the importance of your privacy and security. We NEVER ASK job applicants to:
- Pay any fee to be considered for, submitted to, or selected for any opportunity.
- Purchase any product, service, or gift cards from us or for us as part of an application, interview, or selection process.
- Provide sensitive financial information such as credit card numbers or banking information. Successfully placed or hired candidates would only be asked for banking details after accepting an offer from us during our official onboarding processes as part of payroll setup.
Pay Range: $35-45/hr
The specific compensation for this position will be determined by several factors, including the scope, complexity, and location of the role, as well as the cost of labor in the market; the skills, education, training, credentials, and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits, including medical, dental, vision, and 401K contributions, as well as PTO, sick leave, and other benefits mandated by applicable state or localities where you reside or work.
If you receive a suspicious message, email, or phone call claiming to be from PTR Global do not respond or click on any links. Instead, contact us directly at +1 214-740-2424. To report any concerns, please email us at legal@pinnacle1.com
