CAREERS
OUR MISSION
Protecting and defending our Partners and their customers against brand damaging cyber-attacks, so they can focus on growing their business.
It’s an incredibly rewarding mission that the BLOKWORX team is dedicated to achieving.
Exciting challenges lie ahead—threats are constantly evolving and therefore so are we. Guided by our core values, we’ll meet these challenges with dedication, vigor and a big dose of humor. Join us!
Send your resume to careers@blokworx.com
SOC Analyst / Tier 1
The Tier 1 SOC Analyst has the primary responsibility of monitoring and responding to alerts and notifications triggered in the SIEM tool and Endpoint Protection dashboard, as well as responding to direct client requests for assistance. The Tier 1 SOC Analyst will analyze and triage advanced endpoint protection real-time events and perform Tier 1 incident response and remediation. The analyst will escalate advanced security incidents to Tier 2 SOC analysts and ensure correctness of incident and event detections in service requests. The Tier 1 SOC analyst will report to SOC Manager and/or senior analyst on shift.
The Tier 1 SOC Analyst requires 2-4 years of network intrusion experience or network security operations. The analyst needs the ability to interpret and evaluate incidents and events as reported by the SIEM tool and/or Endpoint Protection dashboard. The ability to communicate technical concepts and narrative clearly both orally and in writing is required. Fundamental understanding of network and security principles and concepts required.
Experience in performing intrusion detection analytics working with the examination of logs and dashboard events is preferred.
2-4 years of SOC/NOC experience is a good baseline. We are hard chargers so if you have the skills, we’re listening. Firewall blacklisting and whitelisting operations experience is a plus. Associate degree or above preferred, or equivalent experience in a NOC/SOC environment. Military/government experience is acceptable, and Veterans are encouraged to apply.
Certifications: CompTIA Security+, CASP, or CCNA Security preferred.
GET THE SITUATION REPORT
Stay informed about the latest in cybersecurity. Subscribe to The Situation Report to get the information you need to keep your business safe and your data secure.