|Preferred GIAC Certifications||GCIA|
|Contact Name||Marshall Bishop|
Symantec Corporation (NASDAQ: SYMC) is the global leader in cyber security. Operating one of the world’s largest cyber intelligence networks, we see more threats, and protect more customers from the next generation of attacks. We help companies, governments and individuals secure their most important data wherever it lives.
We make the world a safer place by helping people, businesses and governments protect and manage their information, so they can focus on achieving their goals.
About the Team:
In the Global Security Office, you will have the opportunity to work for the protection of Symantec’s information technology, brand, intellectually property, and customer data from misuse or compromise. Security controls have never been more important and as the leader in security solutions, we are targeted relentlessly and aggressively on many fronts and must defend ourselves accordingly. The Global Security Office is responsible for all aspects of security at Symantec and, as such, is made up of a diverse, multi-disciplinary and highly talented group of individuals who strive every day to protect what is most critical to Symantec.
The Global Security Office is currently seeking candidates for an experienced SOC Analyst. This is an exciting opportunity to be part of a key team of cyber security professionals here at Symantec, supporting full life cycle cyber security operations.
We are seeking an individual that can bring in-depth security analysis and handling expertise to support daily operations and help grow and mature our current SOC environment. As a SOC Analyst you will directly support the Security Operations Center by applying analytic and technical skills to investigate intrusions, identify malicious activity and potential insider threats, and perform incident response.
Additionally, the SOC Analyst will help develop and enhance detection and response capabilities including creation of robust SIEM content, IDS rules, SOP documentation, and implementation of incident response methodologies.
Monitors the alert queues in the SIEM and adhoc requests reported to security.
Create tickets to document investigations and Findings.
Collects data and context necessary to analyze and remediate alerts.
Must have or attain SANS GCIA within 6 months.
Prior SOC experience.
Strong analytical and investigation skills
Experience with Splunk – preferably Splunk Fundamentals 1 (Free via Splunk website)
Experience with packet capture and analysis (tcpdump/windump, Wireshark, etc.)
General understanding of security concepts (identification, containment, eradication, recovery)
Experience working in fast paced environments with the ability to manage workload during times of stress or escalated activity
Comfortable with impromptu tasking and loosely defined requirements
Excellent oral and written communications skills
Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.