Sr. SOC Engineer

Apply for this position Please mention DailyRemote when applying
timePosted 2 days ago location United States salarySalary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

GlobalSource IT and Identify Security have a direct client that is looking for a Sr. SOC Engineer to join their team for the long term. This role will start out remote but eventually will transition to on premise. Only candidates local to the Bay Area or those willing to relocate at their own expense can be considered. We are unable to sponsor a Visa for this role. As a Senior SOC Engineer, you will leverage our clientrsquos unique SOC platform to perform continuous threat detection and response in some of the worldrsquos most advanced and complex infrastructures. You will be the last line of defense for our client, protecting them from threats that have evaded existing security controls. You will run investigations to ground and respond, or provide our client with direction and recommend response actions. As a primary user of the SOC platform, and a senior level team member, your input will also help shape the future direction of this innovative platform and service, as our client continually evolves their threat detection capabilities and improves SOC efficiency. The ideal candidate will have Minimum 5 years of operational experience (detection and response) working in a SOC or the equivalent as a member of an IT security team Familiarity with common and latest forms of malware, attacker tools, and techniques Ability to design and implement new approaches for detecting attacks and effective containment techniques, including scripting, analytics and automation. Strong understanding of IP networking fundamentals and internet protocols such as TCPIP, HTTP, TLS, SMTP, DNS and SSH Knowledge of Linux, Mac and Windows operating systems, mobile devices and the IT application landscape (Microsoft Office, Active Directory, Collaborative Tools, etc.) High level understanding of public cloud Infrastructure-as-a-Service (IaaS) environments such as AWS, Azure and Google Cloud and Software-as-a-Service (SaaS) solutions like Office 365 Experience working with a selection of SIEM, TIP, malware analysis, and vulnerability assessmentmanagement tools as well as multiple sources of threat intelligence to properly categorize suspicious behavior Knowledge and understanding of security concepts and best practices through practical experience as well as familiarity with cybersecurity frameworks such as NIST, CIS, ISO or PCI DSS