Security Operations Center (SOC) Analyst
Springfield, MassachusettsTechnologyR15488Job IDApply
Information Security Analyst
Full-Time
Springfield, MA
The Opportunity
We're growing and our clients deserve the best. As a Security Operations Center (SOC) analyst you'll have an opportunity to part of a growing team of Cybersecurity analysts who are passionate about protecting MassMutual's assets and customers by leveraging problem solving skills and innovative technology solutions. As a SOC Analyst you will work in a fast paced, innovative, and collaborative environment.
The Team
The SOC is comprised of a team of diverse individuals across multiple locations in the US, India and Romania. Members of our team are responsible for writing automations for common tasks, identifying gaps in our alerting and implementing improvements in our current processes. They demonstrate a passion for continuous learning, leadership traits, resilience and self-awareness.
The Impact
- Perform monitoring for cybersecurity related technologies generating alerts for potential security events requiring investigation.
- Perform technical analysis for cybersecurity events requiring deeper investigation.
- Perform Malware analysis and extract Indicators of Compromise (IOCs) to feed our Threat Intelligence Platform
- Learning about the MassMutual business and technology environment in order to detect anomalous behavior from standard expected activity.
- Identify, classify, and document adversary Tactics, Techniques and Procedures (TTPs)
- Work collaboratively with our Security Intelligence team to enrich and enhance prevention, detection, and threat hunting capabilities.
- Partner with our Security Platforms team to develop playbooks required to successfully respond to specific threats
- Work with the Detection Engineering team to optimize alerting platforms through tuning of alerting logic.
The Minimum Qualifications
- Associates Degree in Cyber Security or related field
- 6+ months of prior internship or externship experience working on cyber security projects or programs
- Ability to work 4x10 shift schedule Sunday - Wednesday 9am - 7pm ET.
The Ideal Qualifications
- Ability to demonstrate an understanding of living off the land techniques used by adversaries, using tools such as PowerShell, WMIC, Task Scheduler, Windows Registry etc.
- Certifications CISSP, CISM, CISA, GCIH, GIAC
- Knowledge of and practical experience with the MITRE ATT&CK framework
- Experience with Case Management tools, Endpoint Detection and Response and modern authentication mechanisms.
- Functional knowledge of common operating systems (Windows, Mac, Linux).
- Python, PowerShell or other scripting languages
- Experience working with a SIEM platform
- Understanding of web application vulnerabilities including XSS, CSRF, SQL Injection, command injection and serialization attacks
- Strong understand of web authentication flows such as SAML and OAUTH
- Understanding of automated attacks such as credential stuffing and site scraping
- Strong written and verbal communication skills
- Interest in continuous learning and a passion for Cybersecurity
What to Expect as Part of MassMutual and the Team
- Regular collaboration with the Threat Intelligence, Security Platforms and Detection engineering teams
- Focused one-on-one time with your manager
- Access to mentorship opportunities
- Networking opportunities including access to Asian, Hispanic/Latinx, African American, women, LGBTQ, veteran and disability-focused Business Resource Groups
- Access to learning content on Degreed and other informational platforms
- Your ethics and integrity will be valued by a company with a strong and stable ethical business with industry leading pay and benefits
#LI-BO1
EEO Statement(Opens in new window)
MassMutual will accept applications on an ongoing basis until such time as a candidate has been offered employment.
Salary Range $84,100.00-$110,300.00Apply