-
Summary
REQUIREMENTS:
- 7+ years of SOC experience.
- Tools - CrowdStrike, Tanium Sumo, O365
Sunday 11 PM - Monday 8 AM
Monday 11 PM - Tuesday 8 AM (
Tuesday 11 PM - Wednesday 8 AM
Wednesday 11 PM - Thursday 8 AM
Thursday 11 PM - Friday 8 AM
RESPONSIBILITIES:- Work in a 24/7 Global SOC Team that operates in three shifts Conduct preliminary incident triage according to the Security Incident Management Triage Matrix and set the priority, provide analysis, determine, track remediation, and escalate as appropriate.
- Utilize the intrusion detection, security scanning, security log collection, content filtering, and other security-related systems to perform triage and investigation and incident response.
- Provide support for security incidents coordination, by using different communication means.
- Ensure the SOC team documentation is up to date, including Investigation Playbooks and Standard Operating Procedures as well incidents have current notes related to investigation steps which were performed.
- Categorization and prioritization of security incidents Looking for the correlation between various security events.
- Monitor security incidents for, endpoints, network, and cloud domains, being generated by the SIEM tool and ticketing system.
- Initial triage and investigation of incidents assigned through the ticketing system, following established playbooks for specific incident types.
- Provide consistent and quality documentation of actions taken to triage / investigate incidents.
- Education - Degree in Computer Science, Engineering, Information Systems, or Cyber Security or equivalent degree - OR - 6 years equivalent
- Tools - CrowdStrike, Tanium Sumo, O365
- Location - Auburn Hills/Farmington/Michigan **CONTRACT TO HIRE ROLE- no sponsorship
-
Job Description
REQUIREMENTS:
- 7+ years of SOC experience.
- Tools - CrowdStrike, Tanium Sumo, O365
Sunday 11 PM - Monday 8 AM
Monday 11 PM - Tuesday 8 AM (
Tuesday 11 PM - Wednesday 8 AM
Wednesday 11 PM - Thursday 8 AM
Thursday 11 PM - Friday 8 AM
RESPONSIBILITIES:- Work in a 24/7 Global SOC Team that operates in three shifts Conduct preliminary incident triage according to the Security Incident Management Triage Matrix and set the priority, provide analysis, determine, track remediation, and escalate as appropriate.
- Utilize the intrusion detection, security scanning, security log collection, content filtering, and other security-related systems to perform triage and investigation and incident response.
- Provide support for security incidents coordination, by using different communication means.
- Ensure the SOC team documentation is up to date, including Investigation Playbooks and Standard Operating Procedures as well incidents have current notes related to investigation steps which were performed.
- Categorization and prioritization of security incidents Looking for the correlation between various security events.
- Monitor security incidents for, endpoints, network, and cloud domains, being generated by the SIEM tool and ticketing system.
- Initial triage and investigation of incidents assigned through the ticketing system, following established playbooks for specific incident types.
- Provide consistent and quality documentation of actions taken to triage / investigate incidents.
- Education - Degree in Computer Science, Engineering, Information Systems, or Cyber Security or equivalent degree - OR - 6 years equivalent
- Tools - CrowdStrike, Tanium Sumo, O365
- Location - Auburn Hills/Farmington/Michigan **CONTRACT TO HIRE ROLE- no sponsorship
-
ABOUT THE COMPANY
-
-
Government Careers
Show moreGovernment jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.
Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.
Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.
-