Join ECI as a Security Ops Center Associate responsible for analyzing and responding to network security events. You will conduct threat investigations, develop detection methodologies, and provide incident response support. This onsite role requires proactive monitoring, collaboration with teams, and continuous improvement in information security knowledge.
Description
ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI.
At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world.
The Opportunity:
ECI has an exciting opportunity for a Security Ops Center Associate, who is responsible for analyzing and responding to network security events.
In this role, you will be responsible for threat actor based investigations, directing new detection methodology and providing 1st level support to incident response and monitoring functions. Also, responsible for proactive monitoring and response of known and or emerging threats against the network.
This is an onsite role.
What you will do:
- Proactive monitoring and response to known and or emerging threats against the network.
- Responsible for threat actor-based investigations using SIEM, EDR, Email gateway, directing new detection methodology and providing 1st level support to incident response and monitoring functions.
- Perform investigation and triage of events and escalate as appropriate. Recognize and investigate intrusion attempts differentiate false positives from true intrusion attempts.
- Document and present findings on security incidents and investigations.
- Collaborate with the team to mitigate and counteract threats.
- Perform email analysis and be able to categorize email with its verdict.
- Remain informed about the latest security trends and best practices
- Communicate effectively with representatives of the Lines of Business, technology specialists, customers, and vendor.
- To continuously improve on their knowledge around information security as it relates to their job and identifying and preventing phishing attempts.
Who you are:
- Minimum 0 - 1 year of experience in the IT industry, preferably working in a SOC environment.
- Bachelors in Computer science/IT/Electronics Engineering, M.C.A. or equivalent University degree.
- Certifications: CCNA, CEH, CHFI.
- Knowledge on SIEM, IDS/IPS, Firewall, VPN, EDR, AV and other security products.
- Knowledge on TCP/IP network traffic and event log analysis.
- Knowledge of ITIL disciplines such as Incident, Problem and Change Management.
- Willingness to work in a job that involves 24/7 operations.
- Remain vigilant while continuing to maintain and enhance the overall security of our client service portfolio.
- Maintain awareness about the potential risks based on the environment they are operating in and the clients they are working on.
- Strong verbal and written communication skills, with ability to communicate technical information to non-technical stakeholders
- Displays an analytical and problem-solving mindset
Bonus points if you have:
- Ability to work well under pressure – particularly during a security incident or regulatory audit
- Strong interpersonal and presentation skills.