Security Analyst Lvl 1

**Who We Are**:
Simnet is not your average managed service provider. We are NOT a break/fix shop, we are dedicated and passionate IT personnel that focus our energy on top of the line solutions that are tailored to suite our clients’ needs. We value learning, we value transparency, and we value our employees.

We are in search of our next superstar. If you have superb troubleshooting skills and want to be hands on with the newest technology, then Simnet may be a great fit for you.

The SOC System Analyst, investigates, and resolves security breaches detected by the security systems. The SOC System Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. The SOC System Analyst is expected to interface with peers in the Infrastructure and NOC department.

**What You’ll Do**
***:
- Maintain accuracy of security documents (ITSM library).

- Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.

- Monitor and analyze traffic and alerts

- Investigate and perform in-depth analysis of exploits and recommend remediation.

- Provide network expertise to support timely and effective decision making of when to declare an incident

- Conduct proactive threat research

- Review security events that are populated in a Security Information and Event Management (SIEM) system and remediate accordingly.

- Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident

- Independently follow procedures to contain analyze and eradicate malicious activity

- Document all activities during an incident and provide leadership with status updates during the life cycle of the incident

- Incident management, response, and reporting

- Provide information regarding intrusion events, security incidents, and other threat indications and warning information to the client

- Track trends, statistics, and key figured for each assigned client

- Assist with the development of processes and procedures to improve incident response times, analysis of incident, and overall SOC functions

- Daily shift change reports, security status reports and incident reports

**Requirements**:
**What You’ll Know**:
Formal Education & Certification
- College diploma or university degree in the field of computer science and/or 2 years equivalent work experience in SOC.

One or more of the following certifications:

- CompTIA Security+ or CompTIA CySA+(preferred)
- GIAC Information Security Fundamentals
- Microsoft Certified Systems Administrator: Security
- Associate of (ISC)2
- Fortinet NSE4

Knowledge & Experience
- Working technical knowledge of
_FortiSIEM and Splunk_
- Working technical knowledge of
_FortiGate NGFW firewalls_
- Familiarity with common IP, TCP/IP, and other network administration protocols.
- Familiarity with syslog monitoring, and windows server, Linux.
- Strong understanding of NIST, ISO 27K, COBIT security frameworks
- Familiarity with common IDS/IPS platforms (Snort, Cisco, Fortigate,PaloAlto)
- Experience with Malware Analysis and Reverse Engineering
- Prior SOC experience
- Experience with packet analysis and packet capture tools
- Incident handling/response experience
- Experience with web technologies and databases

Personal Attributes
- Proven analytical and problem-solving abilities.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Good written, oral, and interpersonal communication skills.
- Ability to conduct research into IT security issues and products as required.
- Ability to present ideas in business-friendly and user-friendly language.
- Ability to translate data pertaining to RISK and presenting findings
- Highly self-motivated and directed.
- Keen attention to detail.
- Team-oriented and skilled in working within a collaborative environment.

**Work Conditions**
- 40-hour on-site work week with on-call availability.
- Sitting and standing in one location for extended periods of time.
- Sufficient dexterity of hands and fingers to efficiently operate a computer keyboard, mouse, power tools, and other computer components.

**Benefits**: