• Monitor and analyze security alerts and events from various security tools and systems.
• Coordinate over multiple mediums with users and administrators of various roles and backgrounds during incident investigations and response.
• Collect and analyze raw events and alerts. Construct timelines surrounding activity that is adversarial or otherwise related to the investigation at hand.
• Provide feedback on alerts received and events reviewed to the betterment of detection capabilities.
• Escalate tickets, when necessary, based on established processes.
• Classify and prioritize incidents based on established criteria.
• Consistently provide professional-quality customer service.
• Thoroughly and accurately document work details within the ticketing system.
• Maintain familiarity with products in use and the ability to quickly familiarize with related technologies.
• Stay informed of breaking news and industry best practices from multiple reliable sources and share findings.
• Attend and contribute to regular team meetings.
• Current FLSA Designation: Non/exempt – Hourly – Overtime eligible.

Required Qualifications:

​

• Bachelor's degree in related field and or/combination of education and work experience.
• Obtain within 1 year and maintain at least one of the following certifications (other intermediate certifications will be considered): Sec+, CySA+.
• Prior completion of related internship or relative class projects that expose applicant to the SOC environment.
• At minimum, entry level experience of incident investigations and responses.

​

Preferred Qualifications:

​

NA

Universal Requirements:

​

• Ability to work in an operational/shift-based environment with flexible working hours to include evenings and weekends.
• Demonstrated experience with the security industry including an understanding of best practices, risk mitigation, and compliance frameworks.
• Able to function effectively in high stakes and high stress situations.
• Legally capable of working in the US, EU, or APAC regions as designated.
• Passionate about cybersecurity and self-driven to continue to learn/develop relevant skillsets as well as maintain industry specific certifications.
• Ability to quickly find answers to questions referencing manuals and/or Internet resources.
• Fluent in English in both writing and speech (i.e., writing, reading, speaking, and understanding) possessing the ability to effectively communicate complex security concepts with end customers.