We are hiring! Recon InfoSec is in need of a SOC Analyst Tier 2. The SOC Analyst Tier 2 will support the Security Operations Center and perform the duties detailed below. We are interested in people who are self-motivated, are creative problem solvers, have experience in the field of cybersecurity, and want to work in a challenging and rewarding environment.
Perform investigations, threat hunting and work cases as needed
Act as an escalation point for Tier 1
Communicate with customers regarding security related incidents
Assist in threat signature implementation and tuning
Define and mature ‘playbooks’ for response to cyber threats
Provide teaching/mentoring to junior analyst team members
Participate and lead SOC training efforts
Additional responsibilities and tasks assigned by SOC management
Willingness to learn, adapt, and innovate
Critical thinking and analytical skills
Excellent written and oral communications skills
Great interpersonal and teamwork skills
2-4 years experience in Security Operations or similar role
Experience with log management, SIEM, and endpoint protection
"On-call" availability (Some nights, weekends, and holidays)
Must be a U.S. citizen
Competitive Applicants Will Have
Experience in a Managed Services role
Experience as an incident responder
Threat hunting experience
Experience with tools and technologies such as ELK stack, Sigma, Velociraptor, Sysmon, osquery, TheHive.
Working knowledge of industry best practices such as HIPAA, PCI-DSS, and NIST
Experience working with email platforms such as O365, G Suite, and Exchange
About Recon InfoSec
Recon InfoSec is a cybersecurity team headquartered in Austin, TX. We specialize in enterprise cybersecurity and are passionate about defending good. We have experience working with companies of all sizes and industries, as well as government entities at the local, state and federal levels.
We are proudly open source and fiercely objective. We are vendor independent and participate in the open source community. We know the value of collaboratively designed tools, networks, and security systems, and we believe in the integrity and efficacy of open source systems to protect, detect and respond to threats.
Our team includes analysts, architects, engineers, intrusion specialists, penetration testers and operations experts.
Benefits & Perks:
Benefits begin on your first day
Contributes toward: Health/Medical insurance (over 100 plans available); AD&D
Additional benefits available: HSA (medical plan choice dependent), FSA (medical and dependent care), Dental, Vision, Supplemental AD&D, Short-term and Long-term Disability, Legal, Pet Insurance, and more
3 weeks of PTO accrual per year
Flexible work arrangement
Employee Assistance Program