About Us
Thrive is an innovative technology solutions provider focused on Cyber Security, Hybrid Cloud, Global Network Management, Disaster Recovery and traditional Managed Services. Our corporate culture, engineering talent, customer-centric approach, and focus upon NextGen services help us stand out among our peers. Thrive is on the look-out for individuals who don't view their weekdays spent at 'a job' but rather look to develop valuable skills that ignite their passion and lead to a CAREER. If you're attracted to a work hard, play hard environment and seek the guidance, training and experience necessary to build a lucrative career, then welcome to THRIVE!
Position Overview
The Tier 1 Security Operations Center (SOC) Analyst contributes to the protection of client assets and information by monitoring security events and responding to incidents. The Tier 1 SOC Analyst will leverage their cybersecurity experience and knowledge to analyze SIEM/XDR/EDR alerts with a focus on root cause analysis. They will also collaborate with the SOC team to provide value-added analysis of potential threats and make mitigation recommendations to the client. The Tier 1 SOC Analyst will maintain knowledge of the current cyber-threat landscape and the MITRE ATT&CK framework.
Responsibilities- Utilizes SIEM/XDR/EDR tools (AlienVault USMA/LevelBlue, LogRhythm, Microsoft Sentinel, Splunk CrowdStrike, etc.) to monitor alerts and security events of client networks and systems
- Identifies, analyzes, and responds to security incidents as they occur
- Collaborates and leverages their cybersecurity knowledge working alongside a team of skilled analysts to address potential threats within a 24x7 SOC
- Crafts escalations to clients for potential threats that include value-added and root cause analysis with recommendations for remediation
- Continually improves cybersecurity and information security expertise
- Performs other related duties as assigned
Qualifications- Bachelor’s degree in Information Technology, Cybersecurity, or related field is preferred
- Basic knowledge of the following content areas is preferred{{:}}
- IP addresses and subnetting
- Common ports and services
- IPv4 and IPv6 basic packet structure
- HTTP methods (GET and POST)
- DNS resolution
- SSL / TLS and certificates
- Common malware strategies (recon, exploit, callback)
