Cyber Security Analyst - L1 To L3 Soc Analyst

You will be part of Two Fourteen-cyber security team, as an SOC analyst who will assist clients in detecting and responding to security incidents with the support of their SIEM and security solutions.

This role involves troubleshooting firewall issues, investigating security alerts, managing endpoint protection systems such as CrowdStrike and Fortigate, and strengthening our overall security posture. The ideal candidate will bring strong network experience, familiarity with Windows and Linux server environments, and exposure to cloud platforms like AWS.

Responsibilities:

• Monitor, analyze, and respond to security events and incidents using SIEM and other monitoring tools.
• Troubleshoot and resolve firewall and network security issues, including Fortigate firewalls.
• Investigate and triage SOC alerts, escalating incidents as necessary.
• Manage and maintain endpoint protection systems like CrowdStrike and Fortigate.
• Configure and manage VPN solutions to ensure secure remote access.
• Collaborate with engineering and IT teams to implement and enforce security best practices.
• Conduct log analysis and network traffic monitoring to identify anomalies and potential threats.
• Maintain and secure Windows and Linux server environments.
• Provide support for AWS security controls and configurations.
• Assist with vulnerability management and patching across network devices and systems.
• Execute incident response playbooks and procedures.
• Conduct periodic audits of firewall configurations, VPN settings, and access controls.
• Respond to user behavioral alerts by discussing actions with users to understand their behavior.

Requirements:

• Mandatory: Strong network experience (CCNA certification is a plus).
• Proficiency in troubleshooting and managing VPN solutions.
• Hands-on experience with Windows and Linux server environments.
• Familiarity with AWS cloud environments and related security practices.
• Knowledge of endpoint protection platforms like CrowdStrike.
• Experience with Fortinet products; Fortinet NSE4 certification is a plus.
• Familiarity with SIEM platforms, log analysis, and security alert triaging.
• Strong understanding of networking protocols (TCP/IP, DNS, VPN, etc.).
• Excellent analytical, organizational, and problem-solving skills.
• Ability to work effectively in a fast-paced, collaborative environment.
• Excellent communication skills as this person will communicate with users daily.

Preferred Qualifications:

• Experience with scripting languages (Python, Bash, PowerShell) for automation.
• Knowledge of IDS/IPS, DLP, and Web/DNS Filtering solutions.
• Familiarity with compliance frameworks like NIST CSF and 800-83, 800-53, ISO 27001, or SOC

Job Type: Full-time

Benefits:

• Health insurance
• Paid training

Schedule:

• 8 hour shift
• Day shift
• Monday to Friday

Supplemental Pay:

• 13th month salary
• Overtime pay

Work Location: In person