Join CCDS as a Senior SOC Administrator / Analyst where you will play a crucial role in enhancing our organization's security posture. You will be responsible for overseeing the security operations center's daily activities, including monitoring security events, managing incident response, and collaborating with various teams to ensure the integrity of our network and systems. This position offers the chance to work with advanced security technologies and lead initiatives that drive the organization’s security strategy.
Role Summary
Own the administration, remediation execution, and reporting of the Security Operations Center (SOC). Act as the single point of contact for SOC operations, coordinate remediation of detected events, and provide structured reporting to stakeholders. You will ensure SOC monitoring is effective and aligned to detection use cases and business risk.
Responsibilities
- Administration
- Serve as the SOC’s dedicated administrator and escalation owner.
- Manage SIEM use cases, rule tuning, log source onboarding, and dashboard creation.
- Ensure event visibility across network, endpoint, and cloud sources.
- Remediation
- Execute approved remediation actions in collaboration with client IT/security teams.
- Document incident workflows and verify corrective actions are successful.
- Reporting
- Produce SOC performance reports (monthly, quarterly, annual).
- Highlight incident trends, SLA adherence, and threat landscape evolution.
Requirements
- Bachelor degree in IT, Cybersecurity, or related discipline.
- 3–5 years SOC experience, including hands-on work with SIEM tools (QRadar, Splunk, ArcSight, etc.).
- Familiarity with network protocols, log analysis, and MITRE ATT&CK framework.
- Certifications preferred: CEH, GCIA, Splunk Certified Power User, or equivalent.
Benefits
- Medical Insurance
- Paid Time Off
- Working Remotely
- Training & Development
- Performance Bonus