Information Security Operations Center Analyst - Brooks Running

Key Responsibilities

• Monitor security alerts and events across SIEM platforms, triaging incidents according to severity and business impact.
• Conduct real‑time incident response, including containment, eradication, and post‑mortem analysis.
• Perform threat‑hunting investigations using log data, network traffic, and endpoint telemetry to uncover hidden adversaries.
• Develop and maintain detection rules, dashboards, and automated playbooks in tools such as Splunk and other SIEM solutions.
• Collaborate with cross‑functional teams to remediate vulnerabilities and improve overall security posture.
• Document incidents, create detailed reports, and contribute to continuous improvement of SOC processes.

Requirements

• 2+ years of experience in a Security Operations Center or similar environment.
• Proficiency with SIEM platforms (e.g., Splunk, QRadar) and incident response workflows.
• Strong analytical skills for log analysis, threat hunting, and root‑cause investigation.
• Hands‑on scripting ability in Python or comparable language to automate tasks and develop detection logic.
• Solid understanding of network protocols, firewalls, IDS/IPS, and vulnerability management concepts.