Job Description
Join the elite team at Apex Cyber Defense and safeguard our infrastructure from evolving cyber threats. We are seeking a highly skilled Senior SOC Analyst to lead our Security Operations Center (SOC) and drive our incident response strategies. If you are passionate about threat hunting, have a keen eye for anomalies, and thrive in a fast-paced environment, we want to hear from you.
In this role, you will be the first line of defense, analyzing vast amounts of data to detect potential breaches before they impact our clients. You will work closely with engineering and compliance teams to ensure our security posture is robust, agile, and resilient against sophisticated attacks.
Responsibilities
- Threat Detection & Analysis: Monitor security alerts and events across the network, endpoints, and cloud environments to identify potential intrusions or anomalies.
- Incident Response: Lead the investigation and containment of security incidents using a rigorous incident response framework. Conduct post-incident reviews to improve detection capabilities.
- SOC Management: Manage and tune security information and event management (SIEM) tools, including Splunk and Microsoft Sentinel, to reduce noise and improve alert accuracy.
- Threat Hunting: Proactively hunt for advanced persistent threats (APTs) and malicious actors lurking within our network, leveraging threat intelligence feeds.
- Compliance & Reporting: Ensure compliance with industry standards such as SOC 2, HIPAA, and GDPR by preparing detailed reports and maintaining audit trails.
- Vulnerability Management: Collaborate with the penetration testing team to validate findings and ensure patches are applied in a timely manner.
Qualifications
- Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent professional experience).
- Experience: Minimum of 5+ years of experience in a Security Operations Center (SOC), Incident Response, or Cybersecurity Analyst role.
- Certifications: CISSP, GCIH, GCFA, or CISM is highly preferred.
- Technical Skills: Proficiency in scripting languages (Python, Bash, or PowerShell) for log analysis and automation.
- Tools: Strong working knowledge of SIEM solutions (Splunk, LogRhythm, ArcSight), NDR (Netskope), and Endpoint Detection and Response (EDR) tools.
- Soft Skills: Excellent communication skills, ability to articulate complex technical issues to non-technical stakeholders, and strong problem-solving mindset.