Lead Security Operations Center (SOC) Cyber Analyst

$126,000 - $210,000/Yr

Deloitte - Los Angeles, CA

posted 12 days ago

Full-time - Senior
Los Angeles, CA
10,001+ employees
Professional, Scientific, and Technical Services

About the position

The Lead Security Operations Center (SOC) Cyber Analyst at Deloitte is responsible for establishing and managing a Security Operations Center to ensure a secure environment for incident response and threat hunting activities. This role involves overseeing junior cyber analysts, managing the SIEM platform, conducting vulnerability assessments, and analyzing network traffic to identify and respond to security threats. The position requires a strong understanding of cyber-attacks, network protocols, and compliance with Department of Defense policies.

Responsibilities

  • Support client leaders in establishing and managing a Security Operations Center (SOC).
  • Provide oversight over junior cyber analysts and assist with prioritization and milestone tracking.
  • Manage the security information and event management (SIEM) platform to monitor security alerts.
  • Coordinate vulnerability assessments and artifact collection across servers and network devices.
  • Evaluate network structures and device configurations for security risks and offer recommendations.
  • Analyze network traffic and system logs to identify malicious activities and vulnerabilities.
  • Conduct comprehensive technical analyses of computer evidence and integrate new security tools into the SOC.
  • Synthesize findings into reports for both technical and non-technical audiences.
  • Collaborate effectively across multiple locations to enhance SOC response and efficiency.

Requirements

  • Bachelor's degree in computer science, information systems, or other technology-related field.
  • 8+ years of experience in security operations, demonstrating leadership in customer-facing roles.
  • Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology certification.
  • Active Secret Clearance (or higher) or ability to obtain.
  • Must be legally authorized to work in the United States without the need for employer sponsorship.

Nice-to-haves

  • Experience with Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center.
  • Familiarity with MITRE ATT&CK framework.
  • Experience in attack reconstruction based on network traffic.

Benefits

  • Discretionary annual incentive program based on individual and organizational performance.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service