SOC 2 Analyst

Job not on LinkedIn

🕒 February 1

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Plurilock

Plurilock

11 - 50 employees

🔒 Cybersecurity

🤖 Artificial Intelligence

🏛️ Government

Cybersecurity • Artificial Intelligence • Government

Plurilock is a leading cybersecurity company that leverages artificial intelligence to provide advanced identity and access management solutions. They specialize in continuous authentication, cloud security, and data loss prevention, serving both commercial and government clients globally, including the U. S. Department of Defense. Their innovative technology uses behavioral biometrics to enhance security by analyzing users' behavior. Plurilock offers a suite of products aimed at preventing cyberattacks and data breaches, ensuring secure, passwordless access across cloud applications.

📋 Description

• Investigating security incidents and determining their root causes • Reviewing incidents escalated by Tier 1 analysts • Using threat intelligence to assess alerts, threats and potential incidents in depth • Monitoring systems and events across different operating systems (Windows, macOS, Linux)

🎯 Requirements

• 5+ years recent experience as Tier 2 or 3 analyst at a large organization • Strong, demonstrated SIEM and data correlation experience • Demonstrated experience designing new SOC use cases and working with vendor on implementing new use cases • Experience designing and implementing runbooks and use cases to mitigate security incidents • Experience designing Incident Response plan, including alert definition, runbooks, escalation, etc. • Extensive experience reviewing and managing alerts in Microsoft Defender, Splunk and or Crowdstrike • Experience conducting hunts across disparate data sets, to include host data, vulnerability data, threat data, network data, active directory data, among others to identify threats • Experience leading timely security operations response efforts in collaboration with stakeholders • Experience documenting incident response communications for technical and management audiences • Experience setting up alert rules and effective alert management • Demonstrated ability to create runbooks and conducting investigations with key application, IT Infra and other stakeholders • Experience designing custom SOC SIEM use cases in Defender, Splunk and CRWD • Experience conducting forensic work investigations • Problem solver • Curious • Analytical, qualitative and quantitative abilities • Adaptive to dynamic environment • Strong security operations documentation abilities.

Apply Now