IOC Analyst
Q2 is seeking an Integrated Operations Center (IOC) Analyst to join our team. The Integrated Operations Center (IOC) is a dynamic and fast-paced team of Analysts who are critical to maintaining the health and stability of Q2's systems and services. The IOC proactively monitors the availability and performance of a wide variety of services supporting business critical systems at Q2. We provide 24x7 support in a first response capacity and take action to resolve incidents. As an IOC Analyst, you will respond to monitoring alerts and cases, drive investigations and provide triage during incidents and outages for services that the IOC supports across Q2. You will join a passionate and collaborative team of people who are focused on providing exceptional support to our customers and internal teams.
RESPONSIBILITIES:
- Become an expert with the IOC's monitoring and alerting tools
- Proactively respond to alerts generated by monitoring systems to maintain environment health and stability
- Resolve issues by following documented processes and pre-defined standard operating procedures
- Monitor and analyze logs and alerts from a variety of different technologies across multiple platforms in order to identify and mitigate security incidents and maintain the integrity of corporate information
- Leverage network security tools and capabilities to analyze potential cyber threats from a variety of intakes taking appropriate response actions to include threat containment and/or escalation
- Document troubleshooting results and remediation actions, provide regular status updates to impacted customers
- Identify and escalate critical impact to on-call teams
- Create and maintain operational runbooks in support new and changing infrastructure
- Perform daily IOC tasks, including managing a case workload, responding to escalated issues and operational checklists
- Ensure proper transition during shift changes
EXPERIENCE AND KNOWLEDGE:
- Bachelor’s degree in Computer Science or equivalent preferred
- 2-4 years previous related experience.
- Demonstrated understanding of General Security Fundamentals, Network Systems, Firewalls, IDS/IPS Systems, End-point Security, and, Network Security and administration concepts, Windows & Linux Server Administration
- Exposure to SIEM technologies (i.e. Splunk)
- Knowledge of threats, attacks, logs, OS and security technology (firewalls, anti-malware, proxies, etc.).
- Knowledge of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Admin. and Security Architecture).
- Must have strong organizational and multi-tasking skills to prioritize workload in a fast-paced environment
- Excellent troubleshooting and problem solving skills
- Must work effectively within a team environment
- Availability to work a rotating shift in a 24x7 environment
At Q2, our goal is to be a diverse and inclusive workforce that fosters mutual respect for our employees and the communities we serve. Q2 is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.