November 7, 2024

Alvarez and Marsal

FULL TIME

(SOC) Security Operation Center Analyst

Description

About A&M
Alvarez & Marsal is a leading independent global professional services firm, specializing in providing turnaround management, performance improvement and corporate advisory services. With over 10,000 professionals based in 70+ locations across North America, Europe, Asia, and Latin America, our firm excels in problem solving and value creation. Drawing on a strong operational heritage and hands-on-approach, our professionals work closely with organizations and stakeholders to help tackle complex business issues and maximize value.

Security Operation Center Analyst
The Global Security Office (GSO) is actively seeking a Security Operation Center Analyst to join our team. The selected individual will play a crucial role, working closely with the SOC Manager as a key member of the GSO. This position, based in the United States, is essential for upholding the security and integrity of our day-to-day operations.

Responsibilities:

Responsible for working in a global 24x7 Security Operation Center (SOC) environment which consists of an in-house and outsourced SOC.
Perform real-time alert monitoring and service / respond to the ticket management queue.
Provide Incident Response (IR) support when analysis confirms actionable incident from the outsourced SOC and/or internal systems.
Provide analysis and trending of security log data from a large number of heterogeneous security devices across different layers.
Provide threat and vulnerability analysis with recommendations
Investigate, document, and report on information security issues and emerging trends.
Analyze and respond to previously undisclosed software and hardware vulnerabilities.
Integrate and share information with other analysts and teams.
Participate in security projects collaborating with stakeholders as needed
Able to participate on a weekend on-call rotation.
Other tasks and responsibilities as assigned through ticketing system.

Core Qualifications:

Bachelor's degree in a related field (Security, Forensics or Computer Science is preferred)
At least 4 years of experience as a security analyst, incident handler/responder within security operations (Sec Ops or SOC)
Excellent knowledge of security methodologies, processes (like Kill chain/diamond models, MITRE ATT&CK framework and SANS).
Excellent knowledge of technical security solutions (firewalls, SIEM, NIDS/NIPS/HIDS/HIPS, AVs, DLP, CASB, proxies, network behavioral analytics, endpoint and cloud security).
In depth knowledge of TCP/IP, UDP, DNS, FTP, SSH, SSL/TLS and HTTP Protocols, network analysis, and network/security applications.
Good knowledge of information security frameworks and standards (like ISO 27001, NIST-CSF etc)
Very good knowledge of common malware threats and attack methodologies.
Professional Certifications: GCIA, GCIH, GCFE, GCFA, Security+, CCNA Cyber Ops, OSCP, GPEN, GWAPT, CEH, CISSP or other equivalent certifications are highly desirable.

Core Competencies:

Ability to develop thorough documentation and operational playbooks in addition to suggest alert enhancements to improve detection capability.
Communicate clearly and effectively (both written and verbal) by contributing significantly to the development and delivery of documents such as incident reports
Manage change and demonstrate adaptability by embracing change and adjusting priorities or processes and approach as needs dictate.
Work independently as a team representative in the allocated region as well as show excellent teamwork skills.
Experienced in working with external vendors and third parties.
Good understanding of system and network hardening practices.

Compensation Statement:
The salary range is $70,000 - $90,000 annually, dependent on several variables including but not limited to education, experience, skills, and geography. In addition, A&M offers a discretionary bonus program which is based on a number of factors, including individual and firm performance. Please ask your recruiter for details.
Full-time Positions and Part-time Positions Over 30 hours
Regular employees working 30 or more hours per week are also entitled to participate in Alvarez & Marsal Holdings’ fringe benefits consisting of healthcare plans, flexible spending and savings accounts, life, AD&D, and disability coverages at rates determined from time to time as well as a 401(k) retirement plan. Provided the eligibility requirements are met, employees will also receive a discretionary contribution to their 401(k) from Alvarez & Marsal. Additionally, employees are eligible for paid time off including vacation, personal days, seventy-two (72) hours of sick time (prorated for part time employees), ten federal holidays, one floating holiday, and parental leave. The amount of vacation and personal days available varies based on tenure and role type. Click here for more information regarding A&M’s benefits programs.