Our client is a leading Healthcare Cyber Security firm, based out of North York, ON, looking to hire a SOC II analyst/Account Manager. This role will be to work with clients as part of the SOC service offering firm provides across Canada. This is an excellent opportunity for a seasoned SOC II Analyst or team lead looking to transition in to management.

Account Manager

SOC Analyst II

Tier II Responsibilities

In addition to the Tier 1 responsibilities listed below, Tier II SOC Analysts are also responsible for the following;

• Completing more complex high priority/escalated client support tickets
• Participating in Incident/Breach response investigations and deliver incident response reports and after-action reviews
• Work on various internal projects/initiatives such as UAT of new SOC tools, working cross functionally with other teams/departments as a stakeholder for the Service Delivery Organization
• Writing or providing input to our Learning and Development team on KB Articles or training content
• Delivering training modules and conducting assessments with new hires
• Ongoing mentoring and coaching of Tier I Analysts
• Participating in Quarterly Service Reviews (QSRs) with our Customer Success Team providing technical input from the SOC where necessary
• Secondary review and approval of permanent signal filters, Global Blacklist IP Nominations and high priority client alerts
• Critical Event Reviews – performing secondary audits of selected signals and following up with analysts and clients as necessary

Tier I Responsibilities

• Analyze incoming security signals in real time with a balance of accuracy and speed using a variety of forensic tools
• Apply investigative tools, techniques and procedures (TTPs), use your understanding of the security threats associated with the incoming signals and follow defined Runbooks to determine and execute the relevant actions
• Perform whitelisting/filtering of false positive signals
• For confirmed true positive signals, you will alert clients using defined templates and escalate high priority alerts to clients by phone
• Block malicious network traffic and isolate infected hosts on customer’s networks
• Add malicious IOC’s to Global Blacklist for all customers where appropriate.
• Complete basic-intermediate client support requests/queries assigned by the operations lead. Work directly with clients via email/phone as needed to complete these tasks
• Handle some service administration and troubleshooting tasks

Requirements

• Relevant degree in Computer Science, IT Security, IT Management, IT Support or related discipline. Completed course must include a strong focus on networking and security.
• 3+ years’ full-time experience in a Security Operations Centre or similar Cyber Security Analysis role excluding time spent on an intern or work experience program
• Hands on experience in at least one of the following Security domains;

• Network Security including Intrusion Detection Systems (IDS)
• Windows Endpoint Security, using EDR products such as VMware Carbon Black Response/Threat Hunter, Crowdstrike Falcon or Microsoft Defender ATP and Trend Micro XDR
• SIEM/Log Management Elasticsearch (Bonus)

• Knowledge and experience of network and endpoint security technologies including;

• Windows system internals, knowledge of PowerShell
• Linux Kernel and basic scripting (Bash/Python) knowledge

• Analytical mind with strong attention to detail and a commitment to quality of service
• Strong customer facing written and verbal communication skills with the ability to effectively communicate complex security concepts with end customers
• Demonstrated experience to confidently handle escalated client issues, diffuse challenging situations and deliver an optimal customer experience
• Natural ability to thrive in a fast-paced and time sensitive environment
• Ability to work in an operational/shift-based environment with flexible working hours to include evenings and weekends

Reference ID: SOC2021A

Job Type: Permanent

Salary: $95,000.00-$130,000.00 per year

Benefits:

• Extended health care

Schedule:

• 8 hour shift

Application question(s):

• Are you authorized to work in Canada?

Experience:

• SOC Analyst level II/III: 5 years (preferred)
• Network Security Intrusion (IDS): 4 years (preferred)
• hands on VMware Cabon, SIEM: 4 years (preferred)
• hands on Threat hunter, Crowstrike: 4 years (preferred)
• LINUX, basic scripting (Bash/Python): 3 years (preferred)
• Windows system intenals, powershell: 4 years (preferred)

Work remotely:

• No

Please Note :
my90210smile.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, my90210smile.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.