sr. business sme - security operation center analyst 3

About the position

The Information Security Office (ISO) is a critical component of the client's defense against cyber threats, and the Security Operations Center (SOC) plays a pivotal role in this mission. The Sr. Business SME - Security Operation Center Analyst 3 will be responsible for protecting over 20,000 devices on the client's network through continuous monitoring of critical systems. This position is integral to the SOC team, focusing on endpoint detection and response, antivirus protection, endpoint investigations, and various other endpoint security, engineering, and incident response activities. The successful candidate will work closely with SOC Team Leads and the Security Operations Manager to meet the operational demands of the SOC effectively. In this role, the analyst will engage in proactive monitoring and analysis of security events, ensuring that any potential threats are identified and mitigated promptly. The position requires a strong understanding of both Windows and Linux systems, as well as their associated scripting languages. Familiarity with cloud environments such as AWS or Azure is essential, as is experience with endpoint security platforms like Microsoft Defender for Endpoint, FireEye, Crowdstrike, and McAfee. Additionally, the analyst will utilize vulnerability testing products such as Windows Defender TVM, Tenable Nessus, Rapid 7 InsightVM, and Qualys to assess and enhance the security posture of the organization. The ideal candidate will also have experience with popular SIEM platforms, including Splunk, Azure Sentinel, Sumo Logic, LogRhythm, and Elasticsearch. A four-year college degree in computer science or a related field is required, with advanced study preferred. Relevant technical security certifications such as GIAC, ISC2, CompTIA, or EC Council are highly desirable. This position is a contract role, offering a competitive hourly rate and the opportunity to work remotely from Augusta, Maine.