• Provides security event monitoring and analysis to identify critical cyber security events for clients.
• Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings).
• Perform event correlation using information gathered from a variety of sources to gain situational awareness and determine the effectiveness of an observed attack.
• Document and escalate incidents (including event's history, status, and potential impact for further action), that may cause ongoing and immediate impact to the environment.
• Notify clients of suspected cyber incidents and articulate the event's history, status, and potential impact of further action.
• Work with customers to validate/resolve computer security incidents and vulnerability compliance.
• Provides recommendations for system tuning and enhancements.
• Create basic Analytic rules for automation for approval.
• Provide basic support for SOC services including but not limited to Managed XDR, Managed EDR, Managed Security Awareness Training and Managed Vulnerability Scanning.
• Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
• Perform recurring customer status calls.
• Draft Standard Operating Procedures (SOPs) as directed.
• Participate in an after-hours on-call rotation.

Required Experience:

• 1+ years working in Information Technology Administration, help desk or other equivalent experience.
• Basic understanding of cybersecurity best practices.

Preferred Experience:

• 1+ years working in or with security products.

Required Skills, Education and/ or Certifications:

• Associate degree or equivalent experience.
• Experience with security tools.
• Microsoft SC-900 (Within 6 months of employment).
• Microsoft SC-300 (Within 1 year of employment).

Preferred Skills, Education and/ or Certifications:

• Bachelor’s degree in Information Technology or related field.
• Experience with SIEM software.
• Experience with Defender for endpoint.
• Azure, AWS, GCP.
• DevOps.

• Competencies:
• Accuracy - Strong attention to detail.
• Active Listening – Ability to actively attend to, convey, and understand the comments and questions of others.
• Adaptability – Ability to adapt to change in the workplace.
• Assertiveness – Ability to act in a self-confident manner to facilitate completion of a work assignment or to defend a position or idea.
• Coaching and Development – ability to provide guidance and feedback to help others strengthen specific knowledge/skill areas.
• Conflict Resolution – Ability to deal with others in an antagonistic situation.
• Decision Making – Ability to make critical decisions while following company procedures.
• Delegating Responsibility – Ability to allocate authority and/or task responsibility to appropriate people.
• Honesty / Integrity – Ability to be truthful and be seen as credible in the workplace.
• Innovative – ability to look beyond the standard solutions.
• Leadership – Ability to influence others to perform their jobs effectively and to be responsible for making decisions.
• Problem Solving – Ability to find a solution for or to deal proactively with work-related problems.
• Relationship Building – Ability to effectively build relationships with customers and co-workers.
• Resource Management – Ability to obtain and appropriate the proper usage of equipment, facilities, materials, as well as personnel.
• Time Management – Ability to utilize the available time to organize and complete work within given deadlines.
• Equal Opportunity Employer - Including Disabled and Veterans
• #HBS