IA-DOM-DOIT-SA2-Endpoint Detection & Response

Position: Endpoint Detection & Response SOC Analyst

Job Description: We are seeking an experienced Security Operations Center (SOC) Analyst with strong expertise in Endpoint Detection and Response (EDR) tools and cyber-security incident handling. The role is remote with responsibilities including monitoring analyzing and responding to events and alerts coordinating with partners and providing detailed reporting and documentation. The ideal candidate thrives in a fast-paced environment and can support Tier 1 triage incident response and off-hours coverage as needed.

Key Responsibilities (highlights):

• Monitor analyze and respond to cyber-security events alerts and incidents
• Provide Tier 1 triage log collection and escalation support
• Collaborate with SOC engineers and cross-organizational partners
• Document changes trends and incident implications; maintain SOC tickets
• Support incident response up to preliminary forensics and remediation activities
• Maintain up-to-date knowledge of cyber-security tools and technologies
• Provide phone/email support during alerts and incidents and assist with metrics and reporting
• Share knowledge to improve SOC processes and playbooks

Must-Have Skills and Experience:

• Hands-on experience with Endpoint Detection and Response (EDR) tools
• 3 years in cyber-security event handling and incident response
• Experience with CrowdStrike or comparable EDR tool
• Ability to work well under pressure in fast-paced environments

Nice-to-Have:

• Strong communication reporting and documentation abilities
• Experience in coordinating with statewide or multi-entity partners
• Basic familiarity with forensics support and initial data gathering

Note: No client or state department details appear in the job description paragraph to adhere to posting guidelines.