Security Operations Center (SOC) Analyst

At Vintti, we're redefining the economics of staffing for US businesses. Our agency connects SMBs, startups, and firms with top Latin American talent, offering a dual benefit of high-quality work and cost savings. By tapping into this rich talent pool, our clients can optimize their budgets, increase productivity, and gain a competitive advantage in their respective markets.

A Security Operations Center (SOC) Analyst plays a critical role in monitoring, detecting, and responding to cyber threats that could compromise an organization's information systems. They serve as the first line of defense, using advanced tools and techniques to analyze security incidents, investigate suspicious activities, and ensure the integrity and confidentiality of data. This role involves continuous monitoring of network traffic, vulnerability assessments, and timely incident response to mitigate risks. SOC Analysts work closely with IT and cybersecurity teams to enhance an organization's security posture and safeguard valuable assets.

- Bachelor’s degree in Cybersecurity, Information Technology, or related field
- Proven experience in a Security Operations Center (SOC) or similar environment
- Proficiency with SIEM (Security Information and Event Management) tools and technologies
- Strong knowledge of network protocols, operating systems, and security architectures
- Experience with intrusion detection and prevention systems (IDS/IPS)
- Familiarity with endpoint detection and response (EDR) solutions
- Understanding of threat intelligence and threat hunting techniques
- Knowledge of common attack vectors and exploitation techniques
- Strong analytical and problem-solving skills
- Excellent verbal and written communication skills
- Ability to work effectively under pressure in a fast-paced environment
- Understanding of incident response and handling procedures
- Familiarity with log analysis and monitoring tools
- Experience with scripting languages such as Python, Perl, or PowerShell
- Strong attention to detail and organizational skills
- Relevant certifications such as CEH, GCIH, CISSP, or CISM
- Knowledge of regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI-DSS)
- Ability to work in a team-oriented environment and collaborate effectively with IT staff and other stakeholders
- Willingness to participate in on-call rotation and respond to security incidents outside of regular working hours
- Continuous desire for learning and keeping up-to-date with the latest security trends and technologies

- Monitor network traffic and analyze security incidents
- Investigate alerts and assess potential threats
- Respond to and manage security incidents
- Conduct triage, analysis, and escalation of incidents
- Analyze log files for malicious activity
- Develop and deploy threat detection rule sets, queries, and scripts
- Maintain and update incident documentation and procedures
- Report security incidents to senior management
- Collaborate with IT staff on security implementations
- Perform vulnerability assessments and provide remediation recommendations
- Develop and execute incident response plans and simulations
- Conduct threat intelligence research
- Participate in security assessments and audits
- Configure, maintain, and tune SOC tools and technologies
- Create and maintain security metrics dashboards and reports

The ideal candidate for the Security Operations Center (SOC) Analyst role will hold a Bachelor's degree in Cybersecurity, Information Technology, or a related field, complemented by proven experience in a SOC or similar environment. They will be proficient with SIEM tools and technologies and possess a strong knowledge of network protocols, operating systems, and security architectures, along with experience in using IDS/IPS and EDR solutions. This individual will demonstrate a deep understanding of threat intelligence and threat hunting techniques, with an acute awareness of common attack vectors and exploitation methods. Analytical and problem-solving capabilities will be paramount, supported by excellent verbal and written communication skills to articulate complex security issues clearly. The candidate will thrive in a fast-paced, high-pressure environment, showcasing strong attention to detail, organizational proficiency, and the ability to prioritize tasks effectively. Familiarity with scripting languages like Python, Perl, or PowerShell, as well as certifications such as CEH, GCIH, CISSP, or CISM, will add significant value. This person will possess a proactive approach, a quick learning ability, and a steadfast dedication to continuous learning and staying abreast of the latest security trends and technologies. High ethical standards and integrity, a collaborative team spirit, and the ability to handle sensitive information with the utmost confidentiality are essential. Moreover, they must be willing to engage in on-call duties, capable of remaining calm under pressure, and ready to respond swiftly to emergencies while demonstrating strong organizational and multitasking abilities.

- Monitor and analyze network traffic for security incidents and events using various security tools
- Investigate alerts and determine the severity and impact of potential security threats
- Respond to and manage security incidents, including mitigating threats and coordinating with incident response teams
- Conduct initial triage, analysis, and escalation of incidents as needed
- Analyze log files from network devices, endpoints, and applications to identify malicious activity
- Develop and deploy rule sets, queries, and scripts to detect threats and improve monitoring
- Maintain and update documentation related to security incidents, processes, and procedures
- Provide timely and accurate reporting on security incidents and activities to senior management
- Collaborate with IT staff to implement security measures and improve the organization’s security posture
- Perform vulnerability assessments and provide recommendations for remediation
- Assist in the development and execution of incident response plans and simulations
- Conduct threat intelligence research to stay current with emerging threats and vulnerabilities
- Participate in regular security assessments and audits
- Assist with the configuration, maintenance, and tuning of SOC tools and technologies
- Create and maintain dashboards and reports to communicate security metrics and trends

- Highly analytical mindset with strong problem-solving skills
- Proactive and detail-oriented
- Exceptional verbal and written communication abilities
- Team player with effective collaboration skills
- Ability to work calmly under pressure
- Quick learner and adaptable to new technologies
- Strong ethical standards and integrity
- Deep interest in cybersecurity and continuous learning
- Ability to anticipate security threats and take preventative measures
- Strong organizational and multitasking abilities
- Ability to prioritize tasks effectively
- Self-motivated with a drive for excellence and accuracy
- Effective time management skills
- High sense of responsibility and accountability
- Ability to think critically and identify root causes
- Strong technical aptitude and hands-on skills
- Willingness to engage in on-call duties and respond to emergencies
- Ability to handle sensitive information with confidentiality
- Keen awareness of current cyber threat landscape

- Competitive salary range based on experience and qualifications
- Comprehensive health insurance (medical, dental, vision, and prescription coverage)
- Life and disability insurance
- Retirement savings plan with company match (e.g., 401(k))
- Paid time off (vacation, sick leave, and holidays)
- Flexible work hours
- Remote work opportunities and telecommuting options
- Professional development and training programs
- Tuition reimbursement for relevant courses and certifications
- Career advancement opportunities within the company
- Access to cutting-edge security technologies and tools
- Employee wellness programs and resources
- Work-life balance initiatives (e.g., flexible scheduling, parental leave)
- Company-sponsored social events and team-building activities
- Employee assistance programs (EAP) for personal and professional support
- Recognition and reward programs for exceptional performance
- Collaborative and supportive work environment
- Mentorship and guidance from experienced cybersecurity professionals
- Opportunities to attend industry conferences and workshops
- On-site amenities (e.g., gym, cafeteria, game room) where applicable