Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Analyst, SOC (Endpoint Protection Experience Required)

extra holidays - fully flexible
Remote: 
Full Remote
Contract: 
Full time
Work from: 
United States

Offer summary

Qualifications:

Experience with vulnerability management technologies, Strong understanding of cyber security practices, Knowledge of SIEM and endpoint protection software, Industry certifications like Security+ or C|EH.

Key responsabilities:

  • Identify and remediate security vulnerabilities
  • Conduct analyses of security incidents and recommend actions

RKON logo
RKON SME https://www.rkon.com/
51 - 200 Employees
About RKON
Since 1998, RKON has delivered IT Transformation helping private equity and enterprise firms achieve Quiet IT from vision to execution. We believe IT should seamlessly serve the business strategy versus getting in the way of execution. Our team at RKON has developed a refined approach, through years of experience, that delivers a clear vision of a scalable, agile, secure, cost optimized and low risk end state. To achieve this end state, RKON provides IT solutions in three stages, first building an advisory practice that sends the strategy in the right direction, an execution practice ensuring that vision is turned into reality and a management practice the keeps the vision on track as IT evolves to serve the business. Because of our record in providing best-in-class IT solutions and our staff of respected and extremely knowledgeable professionals, RKON has been recognized by Crain’s Fast Fifty, CRN Growth 150, Inc. 5000 and Inc. Magazine’s list of 500 fastest-growing private companies. RKON’s trusted advisors deliver strategic guidance, advanced technical knowledge and realistic assessments to give your organization the competitive advantage it requires in today’s environment of rapidly evolving technologies. Here at RKON, we understand that our client’s success starts with our organizational cohesion. Recognized by Computerworld as one of the 100 Best Places to Work in IT, RKON is focused on developing an organization that fosters creativity, innovation and cooperation across all levels. This approach plays an integral role in providing our clients the quality IT solutions they require. We encourage and reward an environment that promotes imagination, innovation and collaboration – where our intelligent IT solutions grow from the bright minds of the RKON team. Build your organization’s IT infrastructure with RKON and realize the unrestricted possibilities of Quiet IT.
See all jobs

Job description

About us: RKON is an ISO27001 and AICPA SOC 2 Type II certified company that specializes in providing IT migration and transformation services for the Mergers and Acquisitions market.  RKON was recently recognized as one of the 100 best places to work in IT, highlighting our competitive advantage of empowering thought leaders and providing cutting-edge solutions for the fast-paced industry of Private RKON is looking for ambitious professionals to join our award-winning team. We have a proven track record for finding and developing top talent with people that believe they can achieve something greater. We also pride ourselves on fostering an environment where initiative, creative thinking, and collaboration are encouraged and rewarded—a key reason for the extraordinary level of service we deliver to our customers.

RKON does not accept unsolicited resumes from staffing agencies, search firms or any third parties.

About the position: RKON is seeking a Cyber Security Analyst to work on the client-facing Security Operations Center (SOC) – Assurance and Response Team. This position requires a motivated fast learner, who is able to work within key vulnerability and security information event management functions to identify, analyze, and remediate potential threats to the environment. The candidate will require security industry knowledge that evolves with current and emerging vulnerabilities and threats, as well as an ongoing understanding of key business and technological processes. This position will report to the SOC Lead Security Analyst.

In this role you will perform key client-facing managed security services activities including identification of assets, scanning for infrastructure and application vulnerabilities, and security monitoring.  In addition, you will perform investigations and conduct analyses of events in order to thwart internal and external threats to the environment.  You will collaborate on an ongoing basis with clients’ key contacts and stakeholders to support detection, triage, incident analysis, containment, remediation, and reporting of vulnerabilities, events, and escalated incidents while coordinating business priorities, emerging and actual threats, and best practices to ensure confidentiality, integrity, and availability of the client’s information assets.

Responsibilities Include:
  • Assist in establishing a mature and optimized Security Operations Center discipline to support managed security services focused on client-facing vulnerability and security information event management engagements.
  • Identify and remediate infrastructure and application vulnerabilities identified in continuous scanning exercises and assist with risk prioritization.
  • Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR), Network Detection and Response (NDR), Email Security, Cloud Security, and other security threat data sources.
  • Respond to clients in a timely manner (within documented SLA) with thorough and concise analysis and recommended actions.
  • Document actions in cases to effectively communicate information to internal and external stakeholders as well as for historical retrieval.
  • Adhere to RKON company and client policies, procedures, and security practices.
  • Resolve problems independently and understand escalation procedures.
  • Conduct scanning and monitoring activities to provide in depth visibility into potential known and unknown vulnerabilities and threats that may pose risk to the RKON and client environments.
  • Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents.
  • Utilize analytics to identify potential vulnerabilities and threats to the environment.
  • Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
  • Collaborate with RKON and client technical leads and Subject Matter Experts including Engineering, Operations, Service Desk, Applications, and client key stakeholders on matters related to security scanning and monitoring across a global footprint.
  • Collaborate and serve as liaison to key security vendor solution partners.
  • Conduct operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host-based forensics as applicable.
  • Act as an internal information security consultant to the business and technology units, advising on risks, threats, and control practices related to SOC - Assurance and Response.
  • Assist in development and knowledge sharing within the team.
  • Assist in security console tuning.
  • Perform threat hunts that target known vulnerabilities, threats, and other attack vectors.
Technical and Professional Expertise
  • Desire to work in SOC, Vulnerability Management, Security Information Event Management, Threat Hunt, or Threat Intel team on a long-term basis
  • Critical thinking and problem-solving skills
  • Passion for information security
  • Strong business acumen including written and verbal communication skills
  • Strong interpersonal and organizational skills
  • Experience with Vulnerability Management technologies
  • Experience with Security Information Event Management technologies
  • Practical experience with TCP/IP networking
  • Working knowledge of Routing and Access Control Devices
  • Experience with Linux, Windows, iOS, and Network Operating Systems
  • Experience with Endpoint and Network Detection Response technologies
  • Experience with Cloud Security configuration best practices
  • Experience deploying and managing Windows Defender for Endpoint, CrowdStrike, SentinelOne, or other industry-leading Endpoint Protection Platforms
  • Industry related certifications: Security+, C|EH, GSEC, etc.

Required profile

Experience

Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

Threat AssessmentSecurity Information And Event Management (SIEM)Vulnerability ManagementEndpoint SecurityNetwork SecurityFirewallMessaging SecurityCloud SecurityCyber SecurityLog MonitoringIntrusion Prevention SystemsIncident ResponseIntrusion Detection SystemsNetwork ForensicsAdvanced Security AnalyticsEndpoint Detection And ResponseMicrosoft AntivirusTCP/IPLinuxVulnerability ManagementSecurity Information And Event Management (SIEM)Azure SentinelNetwork Operating System (NOS)IOS DevelopmentWindows Fundamentals For Legacy PCs

Other Skills

  • Social Skills
  • Problem Solving
  • Non-Verbal Communication
  • Critical Thinking
  • Organizational Skills
  • Business Acumen
Are you interested?

Related jobs

See more jobs