Airforce - SOC Cyber Security Engineer, vTech Solution, Washington, DC
vTech Solution -
N/A
Washington, DC,
US
N/A
Airforce - SOC Cyber Security Engineer
Date Posted: 2024-06-15
Job description
Job Details:
Job Title : SOC Cyber Security Engineer
Job Location : Washington, DC
Job Duration : 12 Months + possibility of an extension
Job Description:
The client is looking for a skilled Cyber Security Engineer with expertise in cloud Security Operations Center (SOC) management. The ideal candidate will have a strong background in reviewing and analyzing various logs and data from security tools within cloud environments. This role demands a proactive individual with a deep understanding of cyber threats and the ability to implement effective security measures to protect our organization's digital assets.
Job Responsibilities:
Cloud SOC Management:
Oversee the operation and management of our cloud-based Security Operations Center (SOC).
Implement and maintain security controls and monitoring mechanisms within cloud environments.
Conduct regular assessments of SOC effectiveness and recommend improvements to enhance security posture.
Log Analysis and Review:
Analyze logs and security events generated by various tools and systems within cloud infrastructure.
Identify and investigate security incidents, anomalies, and potential threats.
Develop and maintain procedures for log collection, analysis, and retention.
Threat Detection and Response:
Utilize advanced threat detection techniques to identify emerging cyber threats and vulnerabilities.
Develop and implement incident response plans to address security breaches and mitigate risks.
Collaborate with cross-functional teams to promptly respond to security incidents and minimize impact.
Security Tool Management:
Manage and maintain security tools deployed in cloud environments, such as intrusion detection/prevention systems (IDS/IPS), SIEM solutions, and endpoint protection platforms.
Configure and fine-tune security tools to optimize performance and accuracy.
Stay updated on the latest advancements in security technologies and recommend new tools or enhancements as needed.
Required Skills:
Proven experience in managing Security Operations Centers (SOCs) in cloud environments, such as AWS, Azure, or Google Cloud Platform.
Create and Manage custom dashboards on logging and monitoring solutions to effectively detect and monitor threats in multiple cloud environments.
Monitor cloud asset compliance posture
Strong analytical skills with the ability to interpret and correlate data from multiple sources to identify security threats.
In-depth knowledge of security technologies, including SIEM, IDS/IPS, firewall, antivirus, and endpoint detection and response (EDR) solutions.
Experience in conducting security assessments, penetration testing, and vulnerability scanning.
Excellent communication and interpersonal skills, with the ability to work effectively in a collaborative team environment.
Strong problem-solving skills and the ability to prioritize tasks in a fast-paced environment.
Familiarity with compliance frameworks and regulations (e.g., GDPR, HIPAA, PCI DSS) related to cloud security.
Proactive approach to staying updated on the latest security trends, threats, and industry best practices.
Bachelor's degree in Computer Science, Information Security, or a related field. Advanced certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus.