REMOTE SOC & Threat Detection Engineer
$93,600 - $135,200/Yr
Insight Global - Woonsocket, RI
posted about 2 months ago
Full-time
Remote - Woonsocket, RI
Administrative and Support Services
About the position
The Remote SOC & Threat Detection Engineer at Insight Global is responsible for monitoring and analyzing the organization's operating systems to detect and respond to potential cybersecurity threats. This role involves conducting in-depth research on malicious activities, performing malware investigations, and ensuring the security of internal systems through proactive monitoring and reporting.
Responsibilities
- Monitor systems for potential threats and risks to internal systems.
- Perform cyber defense trend analysis and reporting.
- Recommend corrections for computing environment vulnerabilities.
- Identify network mapping and operating system fingerprinting activities.
- Validate intrusion detection system alerts and network alerts.
- Identify, isolate, and remove malware and vulnerabilities.
- Construct cyber defense network tool signatures.
- Notify appropriate leaders of suspected cybersecurity incidents.
- Determine adequacy of access controls.
- Maintain currency of cyber defense threat conditions.
- Determine effectiveness of system implementation and testing processes.
- Recommend threat and vulnerability risk mitigation strategies.
- Advise stakeholders on vulnerability compliance.
- Resolve computer security incidents.
- Advise stakeholders on disaster recovery, contingency, and continuity of operations plans.
- Recommend risk mitigation strategies and system modifications.
Requirements
- GIAC certification (GCIA, GDSA, GSOC, GX-IA, GCDA, GMON)
- 6+ years in a SOC environment performing incident response
- Experience in enterprise environments
- Expert level experience in performing packet-level analysis
- Identifying software communications vulnerabilities
- Recreating network topologies
- Evaluating security products and designs and developing security system controls
- Scanning and recognizing vulnerabilities
- Detecting host and network-based intrusions
- Developing and deploying signatures
- Experience urgently handling incidents
- Data analytics
- Network traffic analysis
- Any development/programming background is helpful
Benefits
- Medical insurance
- Dental insurance
- Vision insurance
- HSA account options
- FSA account options
- DCFSA account options
- 401k retirement account access with employer matching
- Paid sick leave
- Paid time off as provided by applicable law
