SOC Analyst I The SOC Analyst I is a mid-level member of the Security Operations Center. They are responsible for meticulously monitoring security logs and alerts, promptly addressing alerts, and taking corrective actions. This position plays a pivotal role in maintaining security posture and minimizing disruptions. The analyst will be required to triage and assess the problem and provide vital information to other security analysts, security engineers, and security leadership to ensure timely resolutions of security incidents. A SOC Analyst I will manage multiple security projects and work with other security analysts and engineers to find ways to improve security processes. Job Responsibilities + Continuously monitor Splunk (SIEM) for security events, respond and resolve security incidents, create new alerts, and suppressions + Create Splunk SPL searches to identify latest threats and risks to the organization + Continuously monitor and perform analysis of phishing alerts. Perform response activities based on analysis results. Research ways to improve the process of repeated incidents. + Continuously monitor endpoint anti-virus security incidents, and work with other analysts to respond and resolve the security incidents. + Continuously monitor vulnerabilities across the Boscov’s environment and work on resolving them with the security and IT departments. + Complete daily file integrity checks to ensure no unauthorized changes were made on Boscov’s devices and escalate to the user if issues arise. + Maintain accurate and up-to-date documentation, providing a comprehensive reference for future security incidents and events. + Manage multiple security projects to improve the Security Operations Center and delegate work to Jr SOC Analysts until project completion. + Maintain security awareness by researching current threats and vulnerabilities, while also notifying the information security team of issues that need to be addressed. + Effectively carry out instructions by SOC Management for various other job-related tasks. + Effectively communicate to affected parties during incidents impacting business. This includes sending timely and accurate updates to relevant parties, facilitating collaboration among different teams and vendors, and documenting the root cause analysis and resolution steps. + Contribute to the knowledge base to facilitate efficient incident resolution. + Participate in security training and exercises to grow into a more experienced security analyst. + Work closely with other cybersecurity analysts and engineers to share knowledge and improve overall team efficiency. + Adhere to established security and compliance policies and procedures. Job Requirements + Demonstrated knowledge of Windows OS and Windows desktop software. + Demonstrated knowledge and expertise with Microsoft Office Applications. + Demonstrated knowledge and proficiency in cybersecurity topics and issues. + Demonstrated ability to manage tasks with little supervision. + Knowledge of monitoring tools and ticketing systems. + Familiarity with ITIL framework and incident management processes. + Ability to manage multiple projects, activities, and tasks simultaneously. + Professional verbal and written communications. + Ability to commute to office (Reading, PA) 1+ times per month + Live (or will live) in one of the following states: PA, NJ, DE, MD, CT, NY, OH, RI, WV Education/Experience + Have a bachelor’s degree in a science field, preferably in computer science. + 4+ years working in an IT environment, in lieu of bachelor’s degree. + Minimum of at least 1 year of working experience in a full-time SOC or other cybersecurity role. + Proficiency in the following cybersecurity areas: + Anti-virus, Vulnerability Management, SIEM, Phishing, and General Security Incidents + Proficiency with network foundations and the ITIL framework. + Ideal candidates should have experience with the following tools: + Splunk, Sophos Endpoint Detection, Rapid7 Vulnerability Management, and Jira/Confluence + Security+, Network+ and ITIL v4 certified or willing to obtain within 90 days of hire + Master’s degree in computer science or cybersecurity can be replaced for said certifications. + May be substituted with a more senior certificate such as CySA+, SSCP, GCIH, CISSP, or other similar certificates Benefits At Boscov’s, we value our employees, and that’s why we provide a competitive compensation and benefits package. As a Full-Time member of our IT team, you will be eligible to receive: + Comprehensive benefits package, including medical/dental/vision + Short term disability/ Long term disability- voluntary + Life Insurance (company paid) + 401(k) w/ company match + Weekly Pay + Paid vacation + Liberal employee discount Work where people love to shop! Equal Opportunity Employer #INDCORP