Verizon Threat Monitoring - SOC Analyst in Irving, Texas

What you’ll be doing...

The Threat Monitoring team is considered the front-line of defense for our networks and computing environment. You will be responsible for monitoring and the analysis of potential and active threats targeting Verizon. You will be agile, willing to learn, and think outside of the box in order to operate effectively in an ever changing threat landscape. This mid-career position provides an opportunity to work in a fast paced collaborative environment defending Verizon from current and future cyber threats.

  • Monitor and analyze logs and alerts from a variety of different technologies across multiple platforms in order to identify and mitigate security incidents affecting our enterprise. This includes analysis of logs from:

  • IDS/IPS

  • Firewall

  • Proxies

  • Anti-virus and end-point protection

  • Servers and workstations

  • Other security technologies and devices

  • Assess the security impact of security alerts and traffic anomalies to gather a broad view of the overall risk profile of the enterprise.

  • Leverage understanding of Operating Systems (Windows, Unix/Linux, and OSX) in support of identifying security incidents and having a proper overview of risk profile.

  • Execute analysis of email based threats to include understanding of email communications, platforms, headers, transactions, and identification of malicious tactics, techniques, and procedures.

  • Utilize and adhere to defined workflow and processes driving the Threat Monitoring and escalation/handoff actions.

  • Analyze potential cyber threats from a variety of intakes taking appropriate response actions to include threat containment and/or escalation.

  • Process tactical mitigations based on results of analysis and determination of threat validity.

  • Follow escalation and handoff procedures to team members and leadership based on defined threat and priority determination.

  • Utilize a variety of security tools and technologies to analyze potential threats to determine impact, scope, and recovery.

  • Leverage network security tools and capabilities to support Cyber Threat Monitoring activities.

  • Document results of cyber threat analysis effectively and prepare comprehensive handoff and/or escalation for Incident Reponses or other teams within the Threat Management Center (TMC).

  • Provide recommendations to enhance and advance the defensive capabilities of the TMC and its subsequent ability to defend our enterprise.

  • Recommend prioritization changes.

  • Execute automated malware analysis to determine initial threat impact and take actions appropriately.

  • Write technical articles for knowledge sharing.

  • Follow-up and follow through with commitments, exhibiting initiative.

  • Work relatively independent, after appropriate training.

  • Mentor and provide guidance to junior team members.

What we’re looking for...

You'll need to have:

  • Associate’s degree or two or more years of work experience.

  • Three or more years of relevant work experience.

  • One or more years of experience with Security Operations or Threat Monitoring.

Even better if you have:

  • Bachelor's degree.

  • Three or more years of relevant work experience (at least one in a Security Operations Center (SOC)/Threat Monitoring environment).

  • Experience working in a Security Operations Center (SOC) with a focus on Computer Network Defense (CND).

  • Experience working with SIEM technologies (i.e. Splunk).

  • Knowledge of Threat Monitoring Procedures.

  • Solid understanding of threats, attacks, logs, operating systems and security technology (firewalls, anti-malware, proxies, etc.)

  • Information Assurance or Cyber experience in the Telecommunications industry.

  • Deep knowledge and understanding of cyber risks and threats related to cyber attackers.

  • Knowledge of Enterprise Anti-Virus, IDS, Full Packet Capture and Host/Network Threat Analysis.

  • Understanding of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture.

  • Knowledge of the fundamentals of Mobile Platforms: Windows Phone, iOS, Android.

  • Programing, scripting and experience with Regex.

  • Strong communication and presentation skills along with the ability to work in a highly collaborative environment.

  • Strong relationship skills and collaborative style to enable success across multiple partners.

  • Ability to manage multiple priorities in a high pressure environment.

  • Effective organizational and technical skills.

  • Effective verbal and written communication skills.

  • Ability to exhibit initiative, follow-up and follow through with commitments.

  • Certifications (A+, Network+, Security+, CISSP, GSEC, GCED, GCIA, and GNFA).

22CyberOPS

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.

REQNUMBER: 480955-1C