We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
New

Consultant - Security Operations Center (SOC) Analyst

NYSTEC
United States, New York, New York
Jan 16, 2025

About Us:

NYSTEC is a nonprofit technology consulting company, advising agencies, organizations, institutions, and businesses since 1996. We're independent and vendor-neutral, so we have our clients' best interests at heart. At NYSTEC, we know that we succeed when individuals and teams flourish personally and professionally, so our benefits and perks support that mindset.

About the Role:

As a security operations center (SOC) analyst in the cybersecurity and data privacy practice area, you will be part of a SOC analysis team responsible for supporting entities across NYS.

Serving as a SOC analyst and NYSTEC consultant, your day-to-day role will be working with a team that performs intake and initial triage of cyber security events. In this position, you will play a critical role in responding to cyber incidents and protecting critical services that NY citizens rely on. The ideal candidate should have a diversity of strengths associated in the cybersecurity space and an appetite to continually learn.

This position is on-site in Brooklyn, NY and may require working outside of NYSTEC's normal business hours.

Shift: Tuesday - Thursday, 6am - 7pm.

Key Responsibilities:



  • Functioning as part of a team and performing intake and initial triage of cyber security events.
  • Responding to computer security alerts from various infrastructures and working to review, classify, prioritize, and escalate these alerts to the appropriate stakeholders.
  • Participating in the identification, triage, and escalation of security events.
  • Monitoring multiple sources (e.g., phone, email, automated systems) for new security events.
  • Following all established procedures, workflows, and tasks related to SOC activities.
  • Ensuring identified incidents are escalated efficiently.
  • Creating and tracking tickets properly and efficiently in the ticket management system.
  • Ensuring that trusted third-party notifications are forwarded to the appropriate stakeholders.
  • Participating in the development and revision of standard operating procedures and workflows.
  • Creating written technical reports and executive summaries related to cyber security incidents and events.
  • Maintaining an adequate level of current knowledge and proficiency in information security through annual training.
  • Obtaining continuing professional education (CPE) credits related to information security.
  • Performing additional duties as assigned.
  • Engaging in SOC relevant communications with management, users, vendors, and other IT staff through spoken and written media.


Required Qualifications:



  • Knowledge of computer networks, intrusion detection systems, routers, firewalls, network and web application vulnerability assessments, computer programming, and scripting.
  • Critical thinking, problem solving, and analytical skills.
  • Excellent speaking and writing skills.
  • Ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.


Preferred/Desired Qualifications:



  • Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.
  • Certificate in Computer Network Defense, Cyber Threat Intelligence, or Penetration Testing
  • 2+ years of experience in technical writing.
  • 2+ years of experience applying and implementing network and/or system security, information security incident response, log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs), and using SIEM technologies to support in-depth investigations.
  • Experience with IBM QRadar SIEM and IBM Cloud Pack for Security.


Education and Experience:



  • A bachelor's degree with at least 15 credit hours in cyber security, information assurance, or information technology; and two years of information technology experience, including one year of information security or information assurance experience
  • An equivalent combination of education, training, and/or experience will be considered.


It is NYSTEC's policy to provide equal employment opportunity (EEO) to all individuals, regardless of actual or perceived race, color, creed, religion, sex, or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), age, national origin, ancestry, citizenship status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, military service and veteran status, sexual orientation, marital status, or any other characteristic protected by local, state, or federal laws and ordinances. NYSTEC is strongly committed to this policy and believes in the concept and spirit of the law.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact recruitment@nystec.com if you require a reasonable accommodation to apply for or to perform this job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

Applicants must be authorized to work in the United States without the need for visa sponsorship now or in the future.

Learn more about NYSTEC by visiting www.nystec.com.

Applied = 0

(web-776696b8bf-vd2jz)