GSOC Engineer
Addison Group
GSOC Engineer
We are looking to bring on a contract SOC Engineer to our GSOC team. This SOC Engineer will need to be someone between 2-6 years of experience working in the cybersecurity space and in an enterprise environment. This candidate will need to be a SOC generalist who will support their ongoing tickets through ServiceNow that will come through as a "round robin" and need security investigation/remediation. The most common examples of tickets needing support are:
- Unauthorized Credentials/Access
- Phishing
- Ransomware
- Password Tasks
- Proxy VPN
To support these tickets we need SIEM/SOAR experience (Splunk, Falcon, Palo Alto), end-point detection & response (EDR), incident forensics, security investigation/documentation, and supporting incident responses at a L1-L2 level. Our enterprise environment consists of Windows and Linux OS, so we need someone who can perform in both. Critical-thinking and a curious attitude will go a long way in being a part of the team.
Personality-wise we will need someone who is eager to learn more about the cybersecurity space from working in our environment, gaining knowledge from higher level people in the GSOC, and the drive to learn then contribute. Not just to day-to-day but also to IR Meetings and take down "above and beyond" tasks.
Any education and/or certifications in Cybersecurity would be a plus.
Top Skills Required:
- 2-6 Years in Cybersecurity
- SIEM/SOAR (Splunk, Falcon, Palo Alto)
- Endpoint Detection Response (EDR)
- Resolving tickets in ServiceNow