Security Operation Center Analyst III

Location: Augusta, ME
Salary: $40.00 USD Hourly - $62.00 USD Hourly
Description:
Title: Security Operations Center Analyst III

Top 3 Skills:

• Vulnerability Management
• Application Testing
• Endpoint Security/Incident Response

Role Overview: As a Cybersecurity Analyst III, you will be responsible for managing vulnerabilities, identifying and evaluating cyber threats, prioritizing and remediating security issues under the guidance of the Cyber Security Manager. You will continuously assess and enhance the security of the systems, networks, and software designs. Your role includes analyzing and logging alert data, identifying potential security events, and escalating them as necessary. You will collaborate with business users to integrate cybersecurity measures into business operations and play a key role in the Vulnerability Management team.

Minimum Qualifications:

• 10 years of information security experience, focusing on risk analysis, vulnerability assessment, and security testing in an enterprise environment.
• Proficiency in Windows or Linux systems and scripting languages (PowerShell, Python, Bash).
• Experience with AWS or Azure cloud environments.
• Familiarity with vulnerability and manual testing tools such as Tenable Nessus, Rapid7 InsightVM, HCL AppScan, MDVM, Qualys, Burp Suite, ZAP, or similar.
• Experience in both application scanning and device vulnerability management.

Primary Responsibilities:

• Deploy, manage, and maintain enterprise cybersecurity tools.
• Review new systems, networks, and software designs for security risks, recommend mitigations, and resolve integration issues.
• Maintain up-to-date knowledge of the Vulnerability Management program, including application scanning and environmental best practices.
• Stay informed on industry best practices and standards such as Vulnerability Life Cycle, OWASP Top 10, NIST, CISA, SANS, and CVSS Scoring.
• Develop and manage metrics to understand trends and insights from vulnerability results, aiding business decisions, automation development, and updating executive dashboards and reports.
• Assist with ticket queue management, taking responsibility for and delegating tickets.
• Partner with business units to ensure proper implementation of cybersecurity protections for current and future projects.
• Perform tasks and coordinate with IT, Vulnerability Management, and SOC team members as directed.
• Coordinate architecture and engineering activities with other IT teams and internal organizations efficiently and professionally.
• Lead vulnerability management efforts, including detection, triage, tooling expansion, data aggregation, reporting, and automation.
• Develop and manage ongoing process improvements and backlog for the scan program, ensuring global coordination and success.
• Contribute to business architecture, requirements, reporting, and analytic configurations, ticketing, and proposed roadmap tools.
• Build cross-functional team relationships to become a trusted point of contact and subject matter expert for inquiries, capability gaps, and enhancement requests.
• Assist the Security Operations Center in maturing and developing a vulnerability program.
• Work with key stakeholders to establish vulnerability and patch management practices, enhancing the security posture within the State of Maine.
• Perform other security functions as directed by the Security Operations Center Manager.
• Focus on prevention, detection, and remediation of vulnerabilities using a reactive security approach.

Preferred Education:

• A 4-year college degree in computer science or a related field, with advanced study preferred.
• Relevant technical security certifications are a plus (GIAC, ISC2, CompTIA, EC-Council, etc.).

Contact:

This job and many more are available through The Judge Group. Please apply with us today!