Job Purpose:

This position is responsible for security alert monitoring and remediation for all security products and customers supported out of the CBTS Security Operations Center. This operational position requires the analyst to be responsible for the surveillance and control of Security Operations Center monitoring system. Responsibilities will include but not be limited to responding to any auto-generated alarm incidents ensuring the integrity of customer network, computer, and end user environments, In addition this position will be responsible for handling any triggering incidents or service requests based on customer emails to shared inboxes, Service Desk tickets, and/or Call Records, handling escalations from the Level 1 analysts, handling Level 2 incident troubleshooting, handling customer engagement via the CBTS Service Management Tool, and transitioning incident and service request support to CBTS Security Operations Analysts III or higher and/or CBTS/Customer Engineering Teams. The support provided must be conducted in a manner that meets and/or exceeds agreed upon Service Level Agreements (SLAs) defined within customers statements of work and corporate T-Cs, that is procedurally compliant, and that ensures data integrity and detailed recording of information in tickets.

The position supports CBTS and its security strategy and objectives by day to day security monitoring. It provides services to mitigate cyber risks to CBTS and protect customer information, systems, products, facilities, and assets. This position is a shift based position and will have well defined working hours.

This position will handle both Tier 1 and Tier 2 alerts as needed, including escalation from the Tier 1 analysts.

Essential Functions:

(50%) Security Operations -- Monitor security alerts and events and follow playbooks to respond to and escalate security incidents.

(20%) Security Escalations -- Assist Tier 1 team in responding to more severe security alerts.

(10%) Technical Training -- A SOC analyst is expected to keep up to date on the latest security trends and technologies. Time will be available for continued training.

(20%) Security Implementation -- This could include the following: documenting procedures, Administer security applications, system and/or security reviews, vulnerability scans, system patching, and other security related tasks.

Experience:

4 years of information technology experience including security and compliance

Education:

Four years of College resulting in a Bachelor's Degree or equivalent

Certifications, Accreditations, Licenses:

Security+, CISSP, PSP, CIPP, CISA or relevant Cert preferred

Special Knowledge, Skills, and Abilities:

Technical knowledge (security and compliance) - working experience with network, compute, and/or application security technologies Strong knowledge of the OSI model Good communication and presentation skills Inquisitive, motivated, and creative Planning and organizing Self-starter and takes initiative