Job Description
Hi,
Hope you are doing well.
Please go through the JD below and let me know if you are interested.
Role: Senior SOC Analyst (L3) Location: Denver, CO (Hybrid) Contract - 12 Months Must need 3-4 years of Telecom domain experience in recent.
Project-Specific Prerequisite Skills: - Rapid7 InsightIDR (XDR+SIEM)
- Rapid7 InsightConnect (SOAR)
Key Responsibilities: - Incident Detection & Response: Lead incident response activities, ensuring quick detection, analysis, and resolution of security incidents. Provide hands-on support to the SOC team during high-priority events.
- SIEM & SOAR Management: Manage and configure Rapid7 InsightIDR and InsightConnect, including log source integration, custom parser development, and optimization of correlation rules and use cases.
- Threat Analysis: Conduct in-depth analysis of security events to identify successful intrusions and compromises. Differentiate false positives from genuine threats to minimize incident noise.
- Automation & Orchestration: Leverage Ansible, Puppet, Python, and PowerShell to automate repetitive SOC tasks, enhance incident response processes, and improve efficiency.
- Configuration Management: Use Ansible and Puppet to standardize and manage SOC system configurations across multiple environments.
- Investigation Management: Lead investigations of incidents escalated by Level 1 analysts and ensure thorough documentation and resolution.
- Quick Mitigation Techniques: Implement interim defensive measures until permanent solutions can be deployed.
- Security Enhancements: Develop and maintain playbooks in Rapid7 InsightConnect to orchestrate and streamline SOC operations.
- Gap Analysis & Recommendations: Identify gaps in the security environment and recommend appropriate measures for risk mitigation.
- Vulnerability Awareness: Stay up to date with the latest vulnerabilities, threat advisories, and penetration techniques to proactively defend against emerging risks.
Desired Skills: - 15+ years of relevant experience
- Strong experience with Rapid7 InsightIDR and InsightConnect, including advanced configuration, rule development, and integration.
- Proficiency in automation and scripting tools, including Python, PowerShell, and Bash, to streamline security operations.
- Hands-on expertise with Ansible and Puppet for configuration management, automation, and environment standardization.
- Advanced knowledge of SIEM and SOAR tools, with proven experience optimizing detection and response workflows.
- Familiarity with incident response frameworks such as NIST, MITRE Telecommunication&CK, and SANS.
- Strong understanding of firewalls, IDS/IPS, antivirus, EDR, and behavioral analytics tools.
- Experience with API integrations for security toolsets and custom reporting solutions.
- Knowledge of log analysis tools, threat intelligence platforms, and vulnerability scanners.
- Relevant certifications such as GCIH, CEH, CISSP, or certifications related to Rapid7 InsightIDR (must have), Ansible, or Puppet are highly desirable.
Educational & Professional Qualifications: - Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field, or equivalent professional experience.
Regards,
Palak Rajora Senior Technical Recruiter © (856) 336-6629 x 320 Email: prajora@metasenseusa.com
Website: Join our Facebook Job Board to see
DAILY job postings!
MetaSense, Inc Minority Business Certified 1233 Haddonfield-Berlin Rd, Units 8 & 9,
Voorhees , NJ 08043
The information contained in this e-mail transmission is confidential and may be privileged. It is intended only for the addressee(s) stated above. If you are not an addressee; any use, dissemination, distribution, publication, or copying of the information contained in this e-mail is strictly prohibited. If you have received this e-mail in error, please immediately notify us by telephone or e-mail to sender and delete the e-mail from your system. Note: We respect your online privacy. This is not an unsolicited mail. Under Bill s.1618 Title III passed by the 105th US Congress, this mail cannot be considered spam as long as we include contact information and a method to be removed from our mailing list. MetaSense, Inc.
Job Tags
Permanent employment, Contract work, Interim role, Immediate start,