Information Security Analyst

About Lumen

The Role

A position in the Global Security Operations Centre (GSOC) supporting the CenturyLink’s portfolio of Managed Security Services. This role performs security event management functions - monitoring, detection, triage of security events and alerts in SIEM and associated monitoring systems. As an Associate SOC Analyst, you will learn how to work with cutting edge User and Entity Behaviour Analytics (UEBA) platform to monitor security events, prioritize alerts, investigate & remediate incidents and how to help our customers by identifying security threats and preventing data breaches. Associate SOC Analysts have opportunities for mentorship from more senior members of the team and involvement with maturing procedures, evaluating new security technologies, incident response, and the freedom to try out new ideas and technologies to improve the SOC. This is a great opportunity to learn, contribute, and grow in the Cyber Security industry with a career path progression into progression path is towards proactive cyber threat hunting and/or red/blue/purple teaming functions.

The Main Responsibilities
- Monitor, triage and response to SIEM, UEBA and EDR alerts for client security events
- Investigation and resolution of outage or abnormal behavioral scenarios on MSS products
- Research and implement customer generated change requests for MSS products
- Generate incident cases and escalate to superordinate teams in accordance with time and severity-based SLA’s
- Perform tasks associated with the installation, turn up and maintenance of CenturyLink security infrastructure
- Participate in company sponsored job related activities plus training to further develop your management and technical skills
- He/she will be part of a rotating SOC shift and will need to manage their schedule accordingly so to ensure t is coverage during SOC shifts.
- Analytical problem solving and troubleshooting skill
- Effective time management, organizational and communication skill
- 1-3 years thorough knowledge and experience in Information Technology
- Working knowledge and exposure to Log Management/SIEM (e.g. FortiSIEM, Splunk, QRadar, ArcSight)
- Possible security technology certifications e.g. CEH, CISSP, CompTIA (A+, Network+, Security+), Microsoft (MCSA), Cisco (CCNA)
- Working towards completion or has a BS/BA degree in Computer Science, Information Technology, or related discipline or equivalent experience
- Strong analytical skills to define risk, identify potential threats, document and develop action/mitigation plan
- A passion for information security and data security
- Knowledge/experience with Operating Systems (e.g. Windows Server, CentOS Linux)
- Knowledge/experience of networking and firewalls (e.g. Cisco ASA, Palo Alto, Checkpoint, Juniper, Fortinet, Arbor, Radware)
- Good to have programming and scripting skills (e.g. Python, Perl, Powershell)
- Exceptional customer service skills
- Detail oriented individuals that work well in a team environment and have a hunger to learn
- Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers
- Must be able to satisfy local government / national background screening

Requisition #: 308991

EEO Statement

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer