Key Facts

Remote From:

Full time

English

Hard Skills

Cyber Security Incident Response Root Cause Analysis XMD Threat Assessment MITRE ATT&CK Framework Splunk Crowdsourcing AlienVault Subnetwork +5 more

Other Skills

•
Collaboration
•
Communication

Roles & Responsibilities

Bachelor’s degree in Information Technology, Cybersecurity, or related field is preferred
Basic knowledge of IP addresses and subnetting
Familiarity with common ports and services
Understanding of SSL / TLS and certificates

Requirements:

Utilizes SIEM/XDR/EDR tools to monitor alerts and security events of client networks and systems
Identifies, analyzes, and responds to security incidents as they occur
Collaborates and leverages cybersecurity knowledge working alongside a team of skilled analysts
Crafts escalations to clients for potential threats with recommendations for remediation

Thrive*

About Thrive*

Thrive is a leading provider of NextGen managed services designed to drive business outcomes through application enablement and optimization. The company’s Thrive5 Methodology utilizes a unique combination of its Application Performance Platform and strategic services to ensure each business application takes advantage of technology that enables peak performance, scale, and security. Hundreds of clients rely on Thrive to drive operational efficiencies, security compliance, high availability, and hardened reliability, both on-premise and in the Cloud. The company’s proven approach to managed services enables enterprises all of sizes to realize their goals, for today and tomorrow.

Company type: Large

Founded: 2018

Company size: 1001 - 5000

Website LinkedIn See all jobs →

Job description

About Us
Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for individuals who don't view their weekdays spent at 'a job' but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you're attracted to a work hard, play hard environment and seek the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!

Position Overview
The Tier 1 Security Operations Center (SOC) Analyst contributes to the protection of client assets and information by monitoring security events and responding to incidents. The Tier 1 SOC Analyst will leverage their cybersecurity experience and knowledge to analyze SIEM/XDR/EDR alerts with a focus on root cause analysis. They will also collaborate with the SOC team to provide value-added analysis of potential threats and make mitigation recommendations to the client. The Tier 1 SOC Analyst will maintain knowledge of the current cyber-threat landscape and the MITRE ATT&CK framework.

Responsibilities

Utilizes SIEM/XDR/EDR tools (AlienVault USMA/LevelBlue, LogRhythm, Microsoft Sentinel, Splunk CrowdStrike, etc.) to monitor alerts and security events of client networks and systems.
Identifies, analyzes, and responds to security incidents as they occur.
Collaborates and leverages their cybersecurity knowledge working alongside a team of skilled analysts to address potential threats within a 24x7 SOC
Crafts escalations to clients for potential threats that include value-added and root cause analysis with recommendations for remediation
Continually improves cybersecurity and information security expertise
Performs other related duties as assigned

Qualifications

Bachelor’s degree in Information Technology, Cybersecurity, or related field is preferred
Basic knowledge of the following content areas is preferred:
- IP addresses and subnetting
- Common ports and services
- IPv4 and IPv6 basic packet structure
- HTTP methods (GET and POST)
- DNS resolution
- SSL / TLS and certificates
- Common malware strategies (recon, exploit, callback)