Search by job, company or skills

ul solutions

Cybersecurity Operations Analyst

1-3 Years
Save
  • Posted 18 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Job Description

As a Cybersecurity SOC (Security Operations Center) Operations Analyst, you will be responsible for monitoring, detecting, and responding to security incidents within the organization's IT environment. You will play a crucial role in maintaining the security posture of the organization by identifying and mitigating potential threats and vulnerabilities. This position requires a strong understanding of cybersecurity principles, technologies, and incident response procedures. Additionally, as a senior-level analyst, you should be able to independently take ownership of all aspects of cyber operations functions with minimal guidance from your manager.

Responsibilities

JOB RESPONSIBILITIES:

  • Security Monitoring and Incident Detection:
  • Monitor security alerts, logs, and event data from various sources, such as SIEM (Security Information and Event Management) systems, intrusion detection systems (IDS), and firewalls, to identify potential security incidents.
  • Analyze network traffic, system logs, and other relevant data to detect unauthorized access attempts, malware infections, or other suspicious activities.
  • Investigate and triage security events, classify incidents, and escalate critical issues to the appropriate teams for further analysis and response.
  • Analyze user reported emails.
  • Initial Incident Response and Investigation:
  • Respond to and analyze suspicious email submissions
  • Respond to security incidents in a timely and effective manner, following established incident response procedures and playbooks.
  • Conduct detailed analysis and investigation of security incidents, determining the root cause, extent of compromise, and impact on the organization's systems and data.
  • Collaborate with incident response teams to contain and mitigate security incidents, minimize the impact, and restore normal operations.
  • Threat Intelligence and Research:
  • Stay updated on the latest cybersecurity threats, vulnerabilities, and attack techniques through research, threat intelligence feeds, and industry reports.
  • Analyze threat intelligence data to identify emerging threats, indicators of compromise (IOCs), and potential vulnerabilities that may affect the organization's systems.
  • Leverage threat intelligence insights to proactively improve security controls, detect advanced threats, and strengthen the organization's security posture.
  • Security Incident Reporting and Documentation:
  • Prepare accurate and comprehensive incident reports, documenting incident details, analysis findings, response actions taken, and recommended improvements.
  • Maintain incident documentation, including evidence logs, incident timelines, and any other relevant information required for compliance and auditing purposes.
  • Collaborate with stakeholders to communicate incident updates, impact assessments, and recommended remediation strategies.
  • Maintain operational knowledge base and runbooks
  • Thought leadership:
  • Lead relevant projects and act as a resource for colleagues with less experience
  • Provide summary reports of monthly trends and noteworthy incidents
  • Provide cybersecurity recommendations to leadership based on significant threats and vulnerabilities
  • Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings).
  • Other task:
  • Handle internal tickets under Cybersecurity responsibility.

Qualifications

  • Read and follow the Underwriters Laboratories Code of Conduct and follow all physical and digital security practices.
  • 1-2+ years experience working in security operations center
  • College degree preferred
  • Experience working with end point protection tools, case management/ticketing tools.
  • Strong understanding and usage of SIEM, EDR, O365 Ecosystem & Ticketing system.
  • Ability to document and create runbooks and generate reports
  • At least one relevant security certifications highly required
  • The schedule may change based on team requirements and operational needs.
  • Perform other duties as directed

About Us

A global leader in applied safety science, UL Solutions (NYSE: ULS) transforms safety, security and sustainability challenges into opportunities for customers in more than 110 countries. UL Solutions delivers testing, inspection and certification services, together with software products and advisory offerings, that support our customers product innovation and business growth. The UL Mark serves as a recognized symbol of trust in our customers products and reflects an unwavering commitment to advancing our safety mission. We help our customers innovate, launch new products and services, navigate global markets and complex supply chains, and grow sustainably and responsibly into the future. Our science is your advantage.

About The Team

As we're supporting some of the most innovative companies in the world, high-performing IT is vital. Deeply focused on technology innovation and practically applying new and emerging technologies to meet the evolving needs of our customers, we operate as strategic partners to the wider organization, developing and delivering best-in-class IT solutions. We also use our expertise day-to-day to offer our colleagues a seamless technology experience, providing them with the tools to help customers all over the world deliver safer, more sustainable solutions. Join our team and connect, support and empower colleagues across our global community.

More Info

Job Type:
Industry:
Function:
Employment Type:

About Company

Job ID: 151012997

Similar Jobs

Philippines

Skills:

Incident HandlingEmail SecuritySiemIncident ResponseFrameworksXDRintrusion detectionEDR