We are looking for a SOC Analyst with expertise in establishing SOC processes from scratch, including requirements gathering, design, selection of SOC environment, deployment, and documentation. You will play a pivotal role in monitoring, detecting threats, and orchestrating incident response to fortify our cybersecurity infrastructure.
Work at Exadel - Who We Are:
Since 1998, Exadel has been engineering its products and custom software for clients of all sizes. Headquartered in Walnut Creek, California, Exadel has 2,800+ employees in development centers across America, Europe, and Asia. People drive Exadel’s success and are at the core of our values.
Project Team:
When you join our team, you'll be immersed in a culture where teammates always help each other achieve better results. We believe that together, we are greater and can find brilliant solutions by sharing ideas.
Requirements:
- 3+ years of proven experience in information security, with a main focus on Security Operations (SOC), within an IT organization is preferable
- Background in designing and implementing advanced Security Operations Center (SOC) architectures for enhanced cyber threat detection and response
- Grounding in the full lifecycle of SIEM implementation, including requirements gathering, selection, deployment, configuration, and management, with a focus on open-source solutions (ELK Stack, Graylog, Wazuh, etc.)
- Know-how in managing a threat intelligence program, including developing and implementing threat intelligence policies and procedures
- Understanding of network protocols, firewall management, and intrusion detection systems, including; network-based intrusion detection systems, endpoint and detection and response solutions (EDR), web applications and network firewalls
- Proficiency in the MITRE ATT&CK Framework, the Cyber Kill Chain, and NIST
- Competency in analyzing and dissecting complex security incidents and vulnerabilities
- Expertise in performing penetration testing, vulnerability assessments, and risk analysis
- Practice in security tools like SIEM, IDS/IPS, DLP, WAF, and endpoint security solutions
- Ability to conduct security audits, develop security policies, and implement risk management frameworks
Languages:
English - B2 or higher
Nice to Have:
- Cloud Security (Azure, AWS, etc.) skills
- Understanding of software development process concepts
- Background in Secure Software Development
- Expertise across a variety of security products including firewalls, URL filtering, information security and virus protection
- Overall understanding of security measures (according to the 27000 series)
- Experience with vulnerability assessment tools like inSightVM, Qualys, or Nessus
- Knowledge of cloud security best practices and experience securing cloud environments (AWS, Azure, GCP)
Responsibilities:
- Lead the establishment of a SOC from scratch, covering design, tech implementation, policy development and ongoing enhancement
- Develop and fine-tune detection rules in the SIEM system, ensuring optimal alert accuracy and reducing false positives
- Conduct proactive threat hunting using Indicators of Compromise (IOCs) across various logs and data sources to identify potential security breaches
- Perform in-depth log analysis and correlation from diverse sources (firewalls, IDS/IPS, endpoint solutions) to detect and investigate security incidents.
- Lead investigations into security incidents, performing root cause analysis and documenting findings
- Leverage threat intelligence feeds to enhance the context of security events
- Participate in ISO 27001 certification audits
Advantages of Working with Exadel:
Transparent Career Roadmap
- The HR manager accompanies each employee on their first steps in the company and assists them in achieving future professional goals
- Exadel is a global company with 30+ offices in 15+ countries. Employees can discover new places to live and work and transfer to any location with an Exadel production office. The HR manager and the Global Mobility specialist accompany the employee and assist throughout the relocation process
- Your career growth is in your hands, so each Exadeller decides when to level up and initiate performance assessments. The management team supports career planning and the discovery of new tech stacks and languages
Learning & Development Opportunities
- Each Exadeller is given a $1,000 yearly budget for self-education, which includes certifications, training sessions, meetups, conferences, and educational materials
- Employees participate actively and benefit from the knowledge-sharing environment across seven practice units: Digital Marketing Technologies, Content Marketing, AI, QA, QAA, Agile, and DevOps
- Employees can find recordings from meetups and trainings on Exadel’s Internal Learning system
Employee Perks & Bonuses
- The Exadel referral program covers all regions and involves recognition for hired recommended professionals. Depending on the location and the position, an employee receives a monetary bonus for recommending a candidate to Exadel who ends up being hired
- Employees collect coins for numerous project activities, exchanging them for products or services of their choice available on the Exadel store
- Volunteers for mentoring, interviewing, performing assessments, and participating in community meet-ups get additional monetary bonuses
- Location-dependent, Exadellers can access benefit platforms with vouchers for online stores, medical insurance reimbursement, sports membership fees, vacations, and childbirth bonuses
