This job might no longer be available.

Lead SOC Analyst

Overview

As a Lead SOC Analyst, you’ll focus on helping us build our incident detection and response capabilities, as well lead the Security Operations Team that is focused on protecting the organization and player environments from cyber-attacks. The primary function of this position is to lead the team as well as participate with investigations, identification and reporting on cyber threats. This role is critical in helping to provide objective analytics and improving systems and tools which assist in the identification and remediation of cyber-attacks for ZeniMax.

Responsibilities

• Provide technical leadership to Security Operations Center Analysts
• Respond to cyber security escalations and provide analysis and trending of security log data from security network and live gaming environments.
• Monitor and analyze Security Information and Event Management (SIEM) alerts to identify security issues for remediation and investigate events and incidents
• Monitor threat intelligence feeds
• Provide proactive “threat hunting” to detect incidents
• Perform the duties and responsibilities of Incident Response Coordinator when needed
• Investigate, document, and report on information security issues and emerging trends
• Prepare reports of analysis to provide briefings to management and clients

Qualifications

• BS in Computer Science or 4 years of experience in a similar role
• 6 years of Security Operations Center experience or equivalent
• Experience analyzing security logs from SIEM, Firewalls, Vulnerability Scanners
• Experience working as an Incident Responder/Coordinator
• Deep understanding of Splunk Enterprise Security
• Deep understanding of Incident Response coordination processes
• Experience monitoring threat feed sources
• Experience authoring Incident Response Playbooks
• Knowledge of SOC tools like VirusTotal, various Sandboxes, various Malware Analysis tools

Preferred Skills

• Experience coordinating incident response efforts, assisting with classifying security events, developing remediation guidance, support documentation and reporting deliverables
• The ability to provide direction and mentoring to SOC Analysts
• Experience conducting risk assessments, developing appropriate risk responses and monitoring the environment for threats

Applicant Privacy Notice

CCPA Applicant Privacy Notice