We are hiring! Recon InfoSec is in need of a SOC Analyst Tier 2. The SOC Analyst Tier 2 will support the Security Operations Center and perform the duties detailed below. We are interested in people who are self-motivated, are creative problem solvers, have experience in the field of cybersecurity, and want to work in a challenging and rewarding environment.

Responsibilities

  • Perform investigations, threat hunting and work cases as needed

  • Act as an escalation point for Tier 1

  • Communicate with customers regarding security related incidents

  • Assist in threat signature implementation and tuning

  • Define and mature ‘playbooks’ for response to cyber threats

  • Provide teaching/mentoring to junior analyst team members

  • Participate and lead SOC training efforts

  • Additional responsibilities and tasks assigned by SOC management

Skills

  • Willingness to learn, adapt, and innovate

  • Critical thinking and analytical skills

  • Excellent written and oral communications skills

  • Great interpersonal and teamwork skills

Requirements

  • 2-4 years experience in Security Operations or similar role

  • Experience with log management, SIEM, and endpoint protection

  • "On-call" availability (Some nights, weekends, and holidays)

  • Must be a U.S. citizen

Competitive Applicants Will Have

  • Experience in a Managed Services role

  • Experience as an incident responder

  • Threat hunting experience

  • Experience with tools and technologies such as ELK stack, Sigma, Velociraptor, Sysmon, osquery, TheHive.

  • Working knowledge of industry best practices such as HIPAA, PCI-DSS, and NIST

  • Experience working with email platforms such as O365, G Suite, and Exchange

Work Location

  • Fully Remote


About Recon InfoSec

Recon InfoSec is a cybersecurity team headquartered in Austin, TX. We specialize in enterprise cybersecurity and are passionate about defending good.  We have experience working with companies of all sizes and industries, as well as government entities at the local, state and federal levels. 

We are proudly open source and fiercely objective. We are vendor independent and participate in the open source community. We know the value of collaboratively designed tools, networks, and security systems, and we believe in the integrity and efficacy of open source systems to protect, detect and respond to threats. 

Our team includes analysts, architects, engineers, intrusion specialists, penetration testers and operations experts.

Benefits & Perks:

  • Benefits begin on your first day

  • Contributes toward: Health/Medical insurance (over 100 plans available); AD&D

  • Additional benefits available: HSA (medical plan choice dependent), FSA (medical and dependent care), Dental, Vision, Supplemental AD&D, Short-term and Long-term Disability, Legal, Pet Insurance, and more

  • Paid holidays

  • 3 weeks of PTO accrual per year

  • Flexible work arrangement

  • Employee Assistance Program

  • Discount Program