SOC Analyst

About UsThrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for individuals who don't view their weekdays spent at 'a job' but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you're attracted to a work hard, play hard environment and seek the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!Position OverviewThe Tier 1 Security Operations Center (SOC) Analyst contributes to the protection of client assets and information by monitoring security events and responding to incidents. The Tier 1 SOC Analyst will leverage their cybersecurity experience and knowledge to analyze SIEM/XDR/EDR alerts with a focus on root cause analysis. They will also collaborate with the SOC team to provide value-added analysis of potential threats and make mitigation recommendations to the client. The Tier 1 SOC Analyst will maintain knowledge of the current cyber-threat landscape and the MITRE ATT&CK framework.ResponsibilitiesUtilizes SIEM/XDR/EDR tools (AlienVault USMA/LevelBlue, LogRhythm, Microsoft Sentinel, Splunk CrowdStrike, etc.) to monitor alerts and security events of client networks and systemsIdentifies, analyzes, and responds to security incidents as they occurCollaborates and leverages their cybersecurity knowledge working alongside a team of skilled analysts to address potential threats within a 24x7 SOCCrafts escalations to clients for potential threats that include value-added and root cause analysis with recommendations for remediationContinually improves cybersecurity and information security expertisePerforms other related duties as assignedQualificationsBachelor’s degree in Information Technology, Cybersecurity, or related field is preferredBasic knowledge of the following content areas is preferred{{:}} IP addresses and subnettingCommon ports and servicesIPv4 and IPv6 basic packet structure HTTP methods (GET and POST) DNS resolutionSSL / TLS and certificatesCommon malware strategies (recon, exploit, callback)