To complement our rapid growth, we are actively looking for a talented and experienced Security Operations Center Analyst to join our Information Security team. The Security Operations Center Analyst position will work closely with the IT, DevOps and InfoSec organizations. The candidate will be responsible for investigating and remediating Information Security issues, working with end users and product/system owners remotely, and actively taking actions to improve the security posture of Five9. The position interfaces with end-users and product teams across all business units at multiple levels. This position is open to qualified applicants within the United States, with occasional travel to our San Ramon, CA headquarters. Candidates residing within 50 miles of our San Ramon, CA or San Francisco, CA offices are required to be in the office three days a week (Mondays, Wednesdays, Thursdays).
- Monitor security alerts and events from various sources, including security information and event management (SIEM) systems.
- Monitor Security reporting sources for InfoSec related issues or requests and work to resolve.
- Investigate and respond to security incidents promptly and effectively.
- Conduct a thorough analysis of security events and incidents to identify potential threats and vulnerabilities.
- Support non-security focused IT staff with security queries or tasks.
- Perform daily assessments to identify and resolve gaps in monitoring.
- Observe case management alert volume to identify problems with detections, logging, automation.
- Develop new and maintain/update documentation of the SOC processes, procedures, and technologies.
- 3+ years of SOC experience.
- Formal education in Computer Sciences/Cybersecurity or related industry certifications.
- Proven experience as a SOC Analyst or in a similar Cybersecurity role.
- Working knowledge in identifying and responding to reports of Malware and Phishing attempts.
- Experience and familiarity with the following: Windows/Unix operating systems, Networking, DNS, EDR, IPS/IDS, Azure, O365, GCP, AWS.
- Hands-on experience with SIEM tools, intrusion detection systems, and other security technologies.
- Awareness of cybersecurity principles, technologies, and best practices.
- Experience with Google Chronicle is a plus.
- Enjoys problem solving and has a great aptitude for critical thinking.
- Excellent written and verbal communication skills, and strong ability to clearly communicate complicated concepts over the phone, in person, and in writing.
- Must learn quickly and adapt to a changing environment and be eager to accept new responsibilities.
- Be excited to learn, explore, grow, and have a curiosity for information security.
#LI-RN1