CenturyLink Operations Analyst in St Paul, Minnesota
CenturyLink (NYSE: CTL) at http://www.centurylink.com is a global communications and IT services company focused on connecting its customers to the power of the digital world. CenturyLink offers network and data systems management, big data analytics, managed security services, hosting, cloud, and IT consulting services. The company provides broadband, voice, video, advanced data and managed network services over a robust 265,000-route-mile U.S. fiber network and a 360,000-route-mile international transport network. Visit CenturyLink at http://www.centurylink.com/ for more information.
The Managed SOC Analyst’s primary function is to provide managed security operations center (SOC) analysis associated with customer monitoring activities using Tenable’s Security Centre, Log Correlation Engine (LCE) and scanning through the processing and management of incident and request tickets, as they are assigned. Some investigation and threat hunting are also in scope. The responsibilities include monitoring alerts. Receiving and managing escalations from Tier 1 Analysts, customers, and other internal groups, as well as managing the full incident handling lifecycle with customers. The Analyst is expected to contribute to internal documentation and adherence to SLA targets and requirements. The role includes log monitoring and root cause analysis, and interfacing with clients and associates as needed to resolve complex cases. These Analysts are also expected to participate in, and contribute to planning and implementation of strategic and operational projects in efforts to achieve overall MSS goals. Analysts are expected to be able to troubleshoot problems with little oversight, take ownership and work independently as needed to resolve customer issues.
The Security Analyst is responsible for the following shift duties:
Daily Traffic Review – replaying traffic from previous shifts and reviewing customer reports to ensure potential security incidents were not missed by other Analyst.
Improve their knowledge of the customer environment, intrusion detection, methodologies, and intrusion detection services with the support of on-going training from the analysts and self-study
Review SOC Activity log, cases and other monitoring tools for complete understanding of previous shift activities and incidents
Handle event incident response, case management, and customer notification
Providing process and operational improvement suggestions
Review, write, and update documentation (such as SOPs, MOPs, and TTPs)
Daily Case Management – the Security Analyst will review open cases and provide follow up that may be required
Report generation on demand and scheduling using available tools
Willing and able to pass Public Trust Adjudication back ground and credit check
At least 1 years Information Security experience and/or training
Some knowledge and understanding of scanning and event monitoring with tools such as Tenable Security Centre and Nessus scanning
Working knowledge of Linux and syslog from CLI
Proven ability and past experience performing security analysis for information technology is required
Excellent writing and communications skills
Working knowledge of Tenable Security Center and Splunk
Familiarization with a variety of information and network security monitoring tools (Barracuda solutions, Palo Alto UTMs, Trend Micro solutions, among others)
Familiarization with defense in depth methodology
Ability to work in a dynamic team oriented environment
Flexible scheduling for 24/7/365 support as needed
Analyst should possess the background and experience necessary to obtain Industry or SOC specific certifications as instructed by management. Possible applicable certifications include, but are not limited to CompTIA Security+ and ITIL
Work Experience: One plus years of Managed Security Service Provider Tier-1/2 Analyst/Operator Experience (Preferred)
Associates or Equivalent in Computer Science or Information Systems
Alternate Location: US-Minnesota-Minneapolis; US-Minnesota-St Paul
Requisition # : 192207
This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.