Security Operations Center Analyst I (Soc) - Fredericton - New Brunswick - Only

Security Operations Center - SOC Analyst I - Fredericton - New Brunswick ONLY
Who We Are
Headquartered in Atlantic Canada with offices across the United States and around the world, Bulletproof has decades of experience in IT, security, and compliance. The company’s footprint now includes users on six continents trusting Bulletproof to address their technology challenges and strengthen their security posture.
Driven by innovative, empowered and creative teamwork, we build solutions that solve business challenges and deliver overall business improvement for our global clients. At Bulletproof, we are committed to our customers, our team and our communities. Bulletproof's practices include Security and Network Operations Centers, Security Assessment & Audit, Quality Assurance and Testing, Project Management, Microsoft Consulting, Managed Services, Managed Security Services, and Product Fulfillment; working together to provide true end-to-end business solutions.
Why Bulletproof
At Bulletproof, our people are the core of who we are and what we do. Founded in Atlantic Canada and now operating globally, it’s our people who drive us and who bring us together. We believe that it’s through trusting and empowering our entire team, that we achieve more. Bulletproof is a Microsoft Solutions Provider, a FOUR-PEAT Microsoft Canada Workplace Impact Award winner, and crowned the 2021 Microsoft Global Security Partner of the Year. Bulletproof is proud to be a member of the Microsoft Intelligent Security Association. We are committed to helping our customers achieve more.
=== PLEASE APPLY ONLY IF YOU ARE LIVING IN FREDERICTON NEW BRUNSWICK ====
Responsibilities

• Ensure implementation of best practice security policies that address business needs while protecting vital corporate assets.
• Provide technical support for an on shift 24X7X365 basis.This involves handling events such as dentify user security issues, extensive troubleshooting, and coordinating resolution or restore using a variety of applications and testing tools. The events can include hardware/software failures as well as security breaches, threats, or network connectivity issues. Regularly provide high-level proactive technical support, including security configurations, security policy modification recommendation, and diagnostics of remote network issues.
• Professionally and courteously answer inbound security-related calls and provide customers with the best possible customer service and experience, create tickets, fill out necessary checklist paperwork, generate trouble tickets for all work and informational requests, handle security-related user complaints, and escalate according to established procedures.
• The individual must be able to perform with minimal supervision of routine duties; must demonstrate ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists; interpret instructions provided in written, oral, diagram, or schedule formats; and can handle multiple tasks simultaneously.

Duties

• Update all relevant documentation such as shift logs and tickets, procedures.
• Monitor the SOC main event tools for security events.
• Perform the detailed and repeatable execution of all operational tasks as documented in SOC processes and subordinate procedures.
• Escalate incidents to applicable Bulletproof entities and or Bulletproof Customers for remediation.
• Document and maintain a knowledge base of alarms (false positives and false negatives, blacklists, whitelists) that IDS and IPS encounter.
• Responsible for long term analysis and investigation into our customer’s network activity, and the creation of custom logic to detect unique or previously undetectable attacks on our customer information assets.
• Provide analysis and investigation to determine if alerts or security events warrant incident classification.
• Drive the Information Fusion Procedure where various data inputs are gathered, analyzed and presented in a meaningful, actionable manner.
• Close or escalate security events as necessary.
• Gather intelligence from sources outside the SOC (both internal and external sources) and leverage for operations.
• Identify impact of incidents on systems, and using available tools determine if data was infiltrated.
• Track incidents through to final resolution.
• Ensure security events and incidents are detected and escalated in a timely manner.
• Perform incident triage to include determining scope, urgency, and potential impact.
• Serve as work area experts for security/information assurance policy recommendations.
• Build relationships with other Bulletproof operations units to strengthen customer security posture.

Job Qualifications

• Bachelor’s degree in Computer Science or equivalent experience relevant to network security with relevant industry certifications.
• Understanding of the operation of test and analysis equipment such as protocol analyzers, LAN/WAN Sniffers, etc.
• Basic understanding of the OSI model
• Security +, SSCP and other technical security certifications (e.g. Information Systems Security Architecture Professional, Information Security Engineering Professional, Certification and Accreditation Professional, or equivalent certifications) (Preferred but not required)
• 2-4 years of related experience in a Network support and or Network operations role; or any combination of education and experience, which would provide an equivalent background.
• Strong interpersonal and user service skills.
• Excellent written, verbal communication and organizational skills.
• Ability to read and interpret network diagrams.
• Experience with processes in functional area (i.e., trouble management, fault management, and incident management).
• Knowledge of trouble ticketing systems or CRM systems.
• Understanding of network management concepts and software, including SNMP
• Knowledge of security applications such as IDS, IPS, SEM, SIEM and anomaly detection tools.
• Ability to read and understand packet captures.
• Knowledge of Unix and Windows operating Systems.
• Background in networking or security to include intrusion detection/prevention.
• Knowledge and experience with PC’s, LAN topologies, routers, hubs, switches, and terminal servers.

Equal Opportunity Statement
Bulletproof is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion , gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Bulletproof is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
Apply Now