Security Operations Center Intern

Description

Job Summary: The Security Operations Center (SOC) Intern will assist in investigating alerts as they are generated from various monitoring tools, will assist in investigating reports that may be received or phoned in (reported by employees, and third-party monitoring service), will assist in proactively hunting for threats in idle time also called Hunt and Incident Response Team (HIRT) work, and monitoring the company SIEMs (Security Information and Event Management). The SOC intern will learn to handle Tier 1 and Tier 2 alerts, and report Tier 3 alerts to applicable personnel within the organization (24 hours per day, 7 days per week, and 365 days per year - 24/7/365). The SOC intern will monitor several dashboards while on shift and will assist the Network Operations Center.

Requirements

Key skills:

• Participate in forensics analysis and artifact gathering.
• Assist with applications/tools including but not limited to SIEM, IPS, NetFlow, e-mail, EDR, gateway protection, monitoring FWs, and DLP tools.
• Interested in gaining knowledge of a Security Information Event Monitoring System (SIEM)
• Interested in gaining knowledge of Endpoint Detection and Response (EDR) tools
• Interested in gaining knowledge of eXtended Detection and Response (XDR) tools
• Interested in gaining knowledge of Intrusion Prevention System (IPS) tools
• Interested in gaining knowledge of a low-level network infrastructure
• Ability to work with others in stressful environments and at stressful times while maintaining communication.
• Interested in vulnerability assessments and penetration testing for specific applications, services, networks, and servers as required.

Preferred Skills:

• Knowledge of operating systems including Linux/Unix and Windows
• Knowledge of one or more of the following Database Environments: Microsoft SQL Server, Oracle, Sybase, DB2 and MySQL.
• Knowledge of Industry Standards, e.g., ISO 17799/27001, FISMA/FedRAMP, NIST Publications and other Industry Related Security Standards.
• Possess an educational understanding of computer intrusion activities, incident response techniques, tools, and procedures.
• Knowledge of digital forensics methodology as well as security architecture, system administration, and networking (including TCP/IP, DNS, SMTP)
• Currently enrolled or recently graduated in either A.S., B.S., or M.S. or equivalent or related program at a university.

Special Requirements:

• Currently enrolled in either A.S., B.S., or M.S. program at an University
• A successful candidate will be responsible and able to manage several tasks simultaneously.
• A successful candidate will be reporting to the Palm Harbor, FL office for this position (No Remote options for this position).
• Excellent written and verbal communication skills
• Excellent organization, time management, and attention to detail
• Must be action-oriented and have a proactive approach to solving issues
• Sitting for long periods of time
• Ability to lift 50 pounds
• Perform other duties as assigned

Hours:

• A successful candidate will be required to work shift work on an as needed basis to include weekends and company holidays; each shift will be either 8 or 12 hours.
• Minimum 20 hours a week