Devsinc is looking for a passionate SOC Analyst to join our dynamic team. The SOC Analyst will serve as a key member of our cybersecurity team, responsible for monitoring, analyzing, and responding to security threats and incidents. The successful candidate will have a strong understanding of security technologies, threat analysis, and incident response.
Responsibilities:
- Monitor security event logs, network traffic, and system alerts to identify potential security threats
- Analyze and triage security alerts to determine severity and impact
- Investigate security incidents, including root cause analysis and recommendation of remediation steps
- Develop and implement incident response plans and procedures
- Collaborate with cross-functional teams to address security concerns and implement security measures
- Stay up-to-date with emerging threats, technologies, and industry best practices
- Provide security awareness training and education to employees
- Participate in the development and maintenance of security policies, procedures, and standards
Basic Requirements:
- Bachelor/Master Degree in Information Security, Computer Science or related field
- At least 3+ years of experience in a SOC or Cybersecurity Analyst or similar role
- Experience with threat analysis and incident response
- Excellent analytical and problem-solving skills
- Strong communication and collaboration skills specifically in English
- Relevant certifications (e.g., CompTIA Security+, CISSP, CEH)
Technical Requirements:
- SIEM (Security Information and Event Management) systems: Such as Splunk, ELK Stack, or IBM QRadar.
- Threat intelligence platforms: Like ThreatQuotient, Anomali, or MISP.
- Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS): For example, Snort, Suricata, or Cisco IPS.
- Firewall and network security management: Such as Check Point, Cisco ASA, or Fortinet.
- Endpoint security solutions: Like Endpoint Detection and Response (EDR) tools, e.g., Carbon Black, CrowdStrike, or McAfee.
- Vulnerability management and scanning tools: Including Nessus, OpenVAS, or Qualys.
- Incident response and forensic analysis tools: Like EnCase, FTK, or Volatility.
- Security orchestration and automation tools: Such as Phantom, Demisto, or Swimlane.
- Cloud security and monitoring tools: For example, AWS Security Hub, Google Cloud Security Command Center, or Microsoft Azure Security Center.
- Scripting languages and automation tools: Like Python, PowerShell, or Bash.
- Ticketing and incident management systems: Such as JIRA, ServiceNow, or BMC Helix.
- Network monitoring and traffic analysis tools: Like Wireshark, Tcpdump, or Bro.
- Experience with Github Actions, Gitlab CI or other CI/CD systems
Nice to Have:
- Experience with cloud security and DevOps
- Knowledge of compliance frameworks (e.g., HIPAA, PCI-DSS)
- Programming skills (e.g., Python, PowerShell)
- Experience with security automation and orchestration tools
Top Skills
What We Do
We integrate global leaders in web development with passionate Asian talent to get a unique blend of Quality and Affordability.
We are headquartered in California and work consistent eastern and pacific standard hours.
We like ad hoc pairing as necessary, TDD, and working with other agencies to make things happen.
We contribute to open source projects and genuinely enjoy coding. We are also committed to teaching, and spreading knowledge!
