SOC Analyst responsible for monitoring security events and assessing risks while collaborating with global customers. Working with Fortinet's SOC-as-a-Service team to improve security posture.
Responsibilities
Monitor SOC alerts to detect potential threats
Use threat intelligence feeds, triage alerts and filter out false-positives
Create custom reports, dashboards, and execute log searches to support investigations and customer’s requirements
Work with customers and Forensic analysis team to contain and eradicate incidents if need be
Follow Incident Response playbooks, processes and procedures and help to improve them
Create/Update use case detections to detect new threats from raw logs
Create/Update playbooks to automate repetitive triage steps
Requirements
Understanding of SOC operations and Incident Response Life cycle.
Understanding of Cyber Kill chain, threat vectors and threat intelligence
Understanding of layered security at data, OS and network levels
Understanding Cybersecurity Frameworks
Hands-on experience with security log analysis such as AV, IPS, Anti-Spam logs
Hands-on experience with visualization, reporting technologies
Hands-on experience with PostgreSQL, regular expressions
Hands-on experience with Network Security technologies such as Firewalls, SIEM, Sandbox
Hands-on experience with Linux and Windows system administration.
Previous working experience with Fortinet products is a bonus.
Team player, solution-focused, conflict management skills
Self-directed, takes initiatives
Open to new challenges and learning opportunities
Understands the importance of discipline, consistency and communication
Good verbal and written communication skills
Cybersecurity certifications such as GCIA, GCIH, GMON, GSOC, CEH, Security+ is a bonus
Graduates from IT degrees, or mid-career IT professionals with certifications in cybersecurity may apply
Must be authorized to work in the U.S. without sponsorship
Benefits
100% company paid medical, dental, and vision coverage
Health Spending Account
Personal Spending Account
Employee & Family Assistance Plan (EFAP)
Critical illness, disability, and life insurance
Group Registered Retirement Savings Plan (RRSP) with company match
Competitive Paid Time Off
Flexible leave policies including paid health days
Intermediate Security Operations Centre Analyst at Long View managing security incidents and working with IT systems. Engaging with teams across Canada in a dynamic IT environment.
IAM Operations Lead responsible for daily administration, governance, and security of identity infrastructure, ensuring correct access and minimizing risks.
CSOC Analyst responsible for managing security incidents and threat investigation at Just Eat Takeaway. Working with an internal team to detect, investigate, and respond to significant threats.
Security Operations Engineer at Supabase providing front - line coverage for security alerts and customer security tickets. Supporting internal IT operations and improving security processes in a remote setup.
SecOps Engineer integrating security into development processes for Lido Protocol. Collaborating on security practices, incident management, and developer training.
SOC Operator managing 24/7 command centre operations for the Toronto Jewish community. Support during emergencies, manage incidents, and conduct thorough record - keeping.
Security Operations Analyst monitoring and investigating security threats across enterprise systems. Collaborating with teams on incident response and threat intelligence activities.
Manager of Security Operations at Match Group overseeing detection engineering, security operations, and incident response. Leading a high - performing team to maximize threat response capabilities.
Senior SecOps Analyst overseeing end - to - end vulnerability management processes. Collaborating with teams to enhance security measures in a hybrid workplace.