SOC Analyst_ Remote

SOC Analyst_ Remote

Posted 1 week ago by 1750933880

Apply
Negotiable
Outside
Remote
USA
Apply
Authentications Automation Azure Active Directory LESS Linux Microsoft 365 Microsoft Azure Microsoft Windows Multi-Factor Authentication Oracle Linux Python (Programming Language) Scripting Security Administration Security Assertion Markup Language (SAML) Single Sign-On (SSO) Windows PowerShell Windows Security

Summary: The SOC Analyst role is a remote contract position focused on providing 24x7 security operations center coverage, initially aligned with New York business hours. The position requires expertise in CrowdStrike EDR and core Windows security mechanisms, along with basic Linux skills and scripting capabilities. Candidates will be expected to adapt to evening and weekend shifts as needed. This role is classified as outside IR35.

Key Responsibilities:

  • Provide true 24x7 SOC coverage.
  • Investigate alerts, triage threats, and conduct threat hunting using CrowdStrike EDR.
  • Administer Windows security mechanisms and manage security principals, access tokens, and security descriptors.
  • Perform Windows and basic Linux security administration.
  • Utilize scripting or automation skills for security tasks.
  • Manage Microsoft Entra ID, including role-based access and troubleshooting MFA and SSO integrations.

Key Skills:

  • Expertise in CrowdStrike EDR.
  • Functional knowledge of core Windows security mechanisms.
  • Understanding of security principals, access tokens, and security descriptors.
  • Basic Linux security administration skills.
  • Scripting or automation skills (e.g., PowerShell, Python).
  • Familiarity with Microsoft Entra ID and MFA systems.
  • Basic knowledge of SSO (SAML) and troubleshooting authentication integrations.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

SOC Analyst_ Remote

Contract

Start Date: As soon as possible.

Coverage Goal: True 24x7 SOC coverage

  • Scheduling Flexibility: Initially aligned to New York business hours.
  • Resources will gradually be rotated into evening/weekend shifts based on gaps.

REQUIRED SKILL SET

  • CrowdStrike EDR: Investigation, alert triage, threat hunting.
  • Core Security Mechanisms in Windows: The IT environment is primarily windows. Candidates should have functional knowledge of core windows security mechanisms.
  • Security Principals and Security Identifiers
  • Access Tokens
  • Security Descriptors, DACLS/Discretionary Access Control, Access Control Entries (ACEs)
  • Windows Privileges
  • Kerberos and NTLM
  • OS & Core Platform Skills:
  • Windows security administration.
  • Linux OS security administration. This is a much small part of the environment and less critical. Basic Linux skills are sufficient.
  • Basic scripting or automation skills (e.g., PowerShell, Python).
  • Network & Identity:
  • Microsoft Entra ID (formerly Azure AD), including role-based access, MFA, SSO troubleshooting.
  • Familiarity with Cisco Duo or Microsoft MFA systems.
  • Basic knowledge of SSO (SAML) and troubleshooting auth integrations.
Apply
Similar Jobs
Loading data...