Security Operations Center

Job Description:

As a 
SOC Analyst Level 1
 at Intelligent Technical Solutions, you will be the first line of defense in monitoring, analyzing, and responding to security threats. This position requires a hands-on approach to security operations, incident response, and threat detection. You will work closely with SOC leadership to ensure that security events are appropriately identified, escalated, and resolved.

Job Responsibilities:

·      Monitor security alerts from various security tools (SIEM, MDR, IDS/IPS, etc.) and analyze potential threats. 

·      Triage security incidents, categorize alerts, and escalate as necessary. 

·      Assist in incident response efforts, including investigation and containment of threats. 

·      Conduct initial forensic analysis on logs and endpoint events to identify malicious activity. 

·      Maintain up-to-date documentation on security events, playbooks, and escalation procedures. 

·      Collaborate with other SOC team members to improve threat detection and response capabilities. 

·      Work with clients to remediate issues such as business email compromise, malware, unexpected software, etc. 

·      Provide support to IT teams in the application of security policies and best practices. 

·      Assist in vulnerability management and patching efforts by identifying and reporting risks. 

·      Continuously improve security processes by researching new threats and vulnerabilities. 

Job Maintenance

The ideal candidate will align with ITS's commitment to continuous learning and adaptation. They should demonstrate a proactive approach to staying updated with the latest developments in the field and foster a similar culture within their team.

Job Qualifications:

· years of experience in a SOC, cybersecurity, or IT security-related role. 

·      Fundamental understanding of cybersecurity principles, networking, and operating systems. 

·      Experience with security tools such as SIEM, endpoint detection and response (EDR), firewall logs, and intrusion detection systems (IDS). 

·      Basic knowledge of threat intelligence, malware analysis, and attack methodologies. 

·      Strong problem-solving and analytical skills. 

·      Ability to follow standard operating procedures and incident response guidelines. 

·      Effective communication skills, both written and verbal. 

·      Understanding of Windows, Mac, and Linux operating systems. 

·      Understanding of Microsoft Entra, Microsoft Azure, and Google Workspace. 

·      Ability to work in a fast-paced, team-oriented environment. 

·      Must hold CompTIA Security+ and CompTIA Network+ or equivalent. 

·      Bachelors in Cybersecurity or Information Technology, CompTIA CySA+, or equivalent is a plus but not required. 

Job KPIs:

·      Alert Handling Time: Efficiency in analyzing and escalating security alerts. 

·      Incident Response Time: Speed and accuracy in responding to security incidents. 

·      False Positive Rate: Ability to distinguish real threats from false positives. 

·      Documentation Accuracy: Quality and completeness of incident reports. 

·      Collaboration Effectiveness: Contribution to team discussions, investigations, and process improvements. 

·      Security Awareness Contribution: Participation in security training and threat research. 

Job Requirements:

• A home office set up that meets the following:
• Computer: A working computer with a minimum of 8GB RAM and one of the following:
• Windows 11 with an Intel i5 or i7 (8th generation or newer), or
• AMD Ryzen 5 or series or newer), or
• macOS 12 or newer.
• Internet: Stable internet connection with at least 5 Mbps download and upload speeds.
• Audio Equipment: A quality headset with a noise-cancellation feature for meetings.
• Mobile Device: A smartphone capable of installing the Microsoft Authenticator app.
• Webcam: An HD webcam for video calls.
• 2nd Monitor
• UPS (Uninterruptible Power Supply) if using a desktop (Not needed if using a laptop)
• A very strong cultural fit the ITS way (Our core values will be discussed during the interview)
• Excellent command of the English language both spoken and written
• Able to work full time 40 hrs. a week: 8:00 AM to 5:00 PM PST (Monday to Friday)
• Able to pass our online behavior and cognitive assessments.
• Preferably, at least two of the following certifications: CompTIA A+, CompTIA Network+, CompTIA Security+, 3cx Basic Certified Engineer.
• Able to provide NBI Clearance (for PH applicants).

Compensation:

Pay rate starts at 
Php 56,600.00
and may vary by experience and location.

Benefits:

• Comprehensive Health Plans / HMO (Employee & Dependent/s)
• Life Insurance
• Flexible Benefit Reimbursement (Dental/Vision/Mental Health/Wellness/Government Contributions)
• Paid Time Off (starts at 15 days per year)
• Maternity/Paternity Leave
• Paid US Holiday
• Night Shift Bonus
• Salary Advancement/Loan
• Health & Wellness Program
• Company-paid training and certification