SOC Analyst

OneStream Software is seeking a SOC Analyst to join their Information Security team. The SOC Analyst will be responsible for detecting, analyzing, and responding to security incidents, as well as monitoring and classifying security events within the organization.

Responsibilities

• Assist in maturing and optimizing the OneStream Security Operations Center (SOC) discipline to support managed security services focused on vulnerability management and security information and event management engagements
• Work closely with support partners to continually tune and enhance security alerting and remediation efforts across the organization
• Monitor and analyze security alerts and Security Information and Event Management (SIEM) tools to identify and remediate security issues
• Monitor and analyze alerts and notifications from multiple security solutions, including EDR, Azure, vulnerability scanning tools, and other platforms
• Collaborate with and serve as a liaison between key security vendor solution partners
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises through the review and analysis of relevant event details and summary information
• Communicate, escalate, and/or mitigate alerts regarding intrusions and compromises impacting network infrastructure, applications, and operating systems
• Conduct operations related to cybersecurity incident response technologies, including network logging and forensics, SIEM tools, security analytics platforms, log search technologies, and host-based forensics, as needed
• Perform scanning and monitoring activities to provide in-depth visibility into known and unknown vulnerabilities and threats that may pose risks to the environment
• Document actions within cases to effectively communicate information to internal and external stakeholders
• Assist Security Engineers, as needed, in strengthening the organization’s overall security posture

Skills

• BS/BA degree in Computer Science, Engineering, Information Technology, or a related field, or equivalent industry experience
• 1+ year of Infrastructure and Information Security experience, preferably within an enterprise environment
• Working knowledge of SIEM products, with Microsoft Sentinel highly desired
• Working knowledge of incident response, threat modeling, and mitigation practices
• Hands-on experience with scripting languages such as PowerShell and/or Python
• Basic understanding of computer operating systems and networking concepts
• Working knowledge of common information security management frameworks such as SOC 2 and ISO 27001
• Demonstrated passion and discipline for uncovering system vulnerabilities and identifying threat actors
• Ability to communicate complex technical issues related to cyber threats across all areas of the company
• Experience supporting Windows and Linux-based servers
• Experience with the ServiceNow ticketing platform
• Strong problem-solving skills and the ability to work effectively under pressure
• Excellent written, verbal, and interpersonal communication skills
• Experience working within cloud environments, with Microsoft Azure preferred
• Industry certifications such as ITIL, Microsoft Certified Systems Engineer (MCSE), CompTIA Security+, CCNA, CISSP, OSCP, GCIA, GPEN, GWAPT, GSEC, GCIH, and/or GMON are preferred

Benefits

• Additional variable compensation and benefits may apply
• Transparency around corporate structure, salary, and benefits
• Core value of customer success
• Variety of project work (not industry-specific)
• Strong culture and camaraderie
• Multiple training opportunities

Company Overview