Description
At HCSC, our employees are the cornerstone of our business and the foundation to our success. We empower employees with curated development plans that foster growth and promote rewarding, fulfilling careers.
Join HCSC and be part of a purpose-driven company that will invest in your professional development.
This position is responsible for monitoring multiple feeds in a 24/7 environment to immediately detect, verify, and respond swiftly to cyber treats, e.g. vulnerability exploitation, malware, cyber-attacks, etc.; serving as a technical escalation resource and provide mentoring for Tier 1 Security Operations Center (SOC) analysts; working collaboratively with multiple teams and personnel; working with other SOC analysts as well as subject matter experts within the larger distributed Cyber defense team including; cyber threat hunters, threat intelligence analysts and forensic investigators; participating and take active role in red-team/blue-team simulated attacks and table top exercises; partnering with Security Design and Architecture Engineers to implement and improve technology and process to enhance SOC monitoring, investigation, and response capabilities.NOTE: This role can be located in DALLAS, TX or WAUKEGAN, IL ~ 4 - 10 hour shifts. Relocation will not be offered; Sponsorship is not available.
Required Job Qualifications:
* Bachelors Degree and 4 years' work experience in a relevant role, i.e. SOC Analyst, Incident Response, Cybersecurity Threat Analyst OR 8 years related work experience OR 8 years related military experience
* Problem solving and troubleshooting skills with the ability to exercise mature judgment.
* Oral and written communication skills
* Attention to detail in conducting analysis combined with an ability to accurately record full documentation in support of their work.
* Experience with event analysis leveraging SIEM tools (e.g. Splunk, ArcSight),
* Log parsing and analysis skill set and previous experience developing and refining correlation rules
* Experience with NIDS/HIPS/EDR infrastructure & tools.
* Experience with Signature development/management (e.g. Snort rules, Yara rules)
* Experience with protocol analysis and tools (e.g. Wireshark, Gigastor, Netwitness, etc.)
* Experienced in mentoring and training junior analysts
* Working knowledge of current cyber threat landscape (e.g. threat actors, APT, cyber-crime, etc.)
* Working knowledge of Windows and Unix/Linux
* Working knowledge of Firewall and Proxy technology
* Knowledge of malware operation and indicators
* Knowledge of Data Loss Prevention monitoring
* Knowledge of forensic techniques
* knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, ARP, etc.)
* knowledge of penetration techniques
* knowledge of DDoS mitigation techniques
Preferred Job Qualifications:
* Bachelor's Degree in Computer Science, Information Systems.
* Experience in an enterprise environment with any of the following: ArcSight, Sourcefire, TrendMicro DDI, Splunk, Hadoop
* Experience in System or Network Administration, Penetration Testing or Application Development
* Security Certifications Preferred (Including but not limited to the following certifications):
o Cybersecurity Nexus (CSX) Practitioner
o Certified Incident Handler (GCIH)
o Certified Intrusion Analyst (GIAC)
o Offensive Security Certified Professional (OSCP)
o Certified Expert penetration tester (CEPT)
o Certified Information Systems Security Professional (CISSP)
o Networking Certifications (CCNA, etc.)
o Platform Certifications (Microsoft, Linux, Solaris, etc.).
INCR
#LI-ES1
#LI-Hybrid
HCSC Employment Statement:
We are an Equal Opportunity Employment / Affirmative Action employer dedicated to providing an inclusive workplace where the unique differences of our employees are welcomed, respected, and valued. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other legally protected characteristics.
Apply on company website
Find Connections via Linkedin
