About the role

Aplyr's Quick Take

This role is for an IT Cyber Defense Analyst focused on monitoring and responding to security incidents within an enterprise environment. You'll be working with various security tools and technologies, analyzing logs, and collaborating with other teams to enhance security measures. It's primarily an individual contributor role with some coordination responsibilities.

Good fit

Ideal candidates have 2-4 years of experience in a SOC or cybersecurity role, with hands-on experience in security technologies and incident response. A proactive working style and strong communication skills are essential for success.

Worth noting

The role requires familiarity with a wide range of security tools and protocols, which may be overwhelming for some. However, it offers the chance to work with advanced security technologies in a remote setting.

Experience:

2 - 4 years of experience in Security Operation Center (SOC), Cyber Security, and Information Security within an enterprise environment.
Experience with Windows and Linux, server and application hardening process.
Experience supporting one or more information security technologies.
Mandatory experience in Azure, EDR, XDR (Crowdstrike, Windows Defender), SOAR, SIEM Tools (e.g., Splunk, Rapid7, ArcSight, McAfee Nitro), Palo Alto, Cisco and one of the following: IDS/IPS, database activity monitoring, multi-factor authentication, web content filtering, encryption, and encryption key management, DLP, change detection.
Working knowledge of TCP/IP stack & familiarity with common protocols e.g., HTTP, FTP, SMTP, DNS.
Familiarity with network and application threats such as DoS/DDoS, SQL injection, XSS, reconnaissance scanning, and methods to avoid detection.
Working knowledge of compliance, and regulatory requirements, such as Payment Card Industry (PCI), Sarbanes-Oxley (SOX), and Healthcare Information Privacy Protection Act (HIPAA).
Experience with vulnerability scanning tools such as Nessus, Acunetix, Qualys, or Metasploit a plus.
Have scripting experience with Bash, PowerShell, or Python and the ability to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts.
Be familiar with the MITRE ATT&CK Framework and/or Cyber Kill Chain.
InfoSec certification are a plus such as CISSP, CompTIA Security+, GIAC Security Essentials, & CEH
Have strong oral and written communication skills Strong interpersonal and leadership skills.

Responsibilities:

Triage security incidents identified by SOC analysts.
Identify enhancement to rule sets and other tool optimization to automate reporting and reduce false positives in unified SIEM and review with manager / senior team members for implementation.
Coordinate with SOC manager to escalate security issues to other business units including solutions development, customer hosting and corporate IT.
Collaborate with business units to prioritize vulnerability remediation and execution of planned activities.
Subscribe to threat intelligence services and monitor vendor alerts for major vulnerability disclosures.
Monitoring of advanced security tools, perform analysis of dissimilar indicators, correlation of multiple sources, alert & coordination of security incidents across the environment.
Review & analyze system logs and third-party management products to preemptively detect, take defined corrective actions and alert process/system owners to new issues.
Assist with creation and maintenance of security incident response procedures.
Participate in research and assist implementation of security tools used by SOC team.
Assist SOC manager with dashboards and business reporting.
Ready to work in rotational 24/7 shift.

Aplyr's read

Harris Computer excels in delivering specialized software solutions for diverse sectors, attracting tech-savvy professionals passionate about innovation and operational efficiency.
Synthesized from recent postings & public sources

What's promising

•Harris Computer offers diverse roles across various sectors, enhancing career growth opportunities.
•The company focuses on innovative technology solutions, appealing to those interested in cutting-edge software development.
•Remote work options are available, providing flexibility for employees in different roles.

What to watch

•Limited public information about company culture and work-life balance.
•The company's focus on multiple industries may dilute specialization in any single sector.
•Potential challenges in maintaining consistent innovation across diverse software solutions.

Why Harris Computer

•Harris Computer's specialization in public sector and utilities software differentiates it from general tech firms.
•The company offers roles in emerging fields like AI, reflecting a commitment to future technologies.
•Harris Computer's focus on operational efficiency solutions provides a niche appeal to process-oriented professionals.

Aplyr’s read is generated by AI from public sources. Was it useful?

About Harris Computer

Harris Computer

harriscomputer.com

View company

Harris Computer is a leading provider of software solutions for various industries, including public sector, utilities, and healthcare. The company focuses on delivering innovative technology solutions to improve operational efficiency.