WSP-Parsons Brinckerhoff Lead SOC Analyst (ID# 45929) in Ephrata, Pennsylvania
Lead SOC Analyst (ID# 45929) Ephrata, PA
Job Type: Full Time
Minimum Experience: 3-5 yrs
Required Education: Bachelor's Degree
Be involved in projects with our Global Security Operations Team and be a part of a growing organization that meets our client’s objectives and solves their challenges.
At WSP, we are driven by inspiring the right people to be part of our future-focused business objectives. Our devotion to teamwork has allowed us to build communities and expand our skylines. Here at WSP, anything is within our reach and yours as a WSP employee. Come join us and help shape the future!
WSP is currently initiating a search for a Lead SOC Analyst . This position could potentially work in any WSP USA offices or may be remote.
Duties and Responsibilities:
Under the guidance of the Global Director, Security Operations, assist with the overall design, analysis and execution of the Security Operations Center Tasks, including but not exclusive to:
Specific areas of responsibility may fall into any one of the following areas of Security Operations, as assigned by the staff’s management.
Identity Governance and User Lifecycle Management
Threat and Vulnerability Management
Network, Database, Server and Endpoint, and Application Security
Information Security Framework and Audit Compliance
Collection and analysis of metrics
Antivirus and Antimalware analysis.
The Global SOC Analyst will have multiple security related roles within the organization. Their main goal will be to provide a secure computing environment for the organization to conduct their business. The global security operations team will have overlapping duties however each role will have more specifically focused duties. The analyst will be responsible for creating technical security standards for technologies within the below scopes of responsibilities as well as other aspects of security operations and for auditing for compliance under these standards; this is not an exhaustive list:
Threat and Vulnerability Management recommend, design and manage the vulnerability management process. Not mutually exclusive to patching, Intrusion prevention, Vulnerability bulletins, penetration testing, malware prevention and incident response. Develops a common set of security tools. Defines operational parameters for their use and conducts reviews of tool output.
Security event detection and response Manage the tools and processes for the organizations SIEM as well as any other event detection and response tools. Write Standard Operating procedures, train and handover to operations for remediation.
Incident Management Process and Forensics assist in providing forensic capabilities for the incident management process when needed. Monitor and manage infrastructure logging for security, including perimeter network devices, malware prevention, and intrusion prevention.
Network infrastructure security responsible for determining and maintaining the technical standards for configurations of routers, switches, firewalls, IPS and IDS devices.
Leadership and People Responsibilities:
Assist in the training, and coaching of new and existing staff, and provide coaching to staff executing all aspects of information security and risk assessment and support
Develop positive working relationships with other team members and business partners and partner across teams to align with WSPs internal and external client demands
Assist in communication streamlining for information security risk and analysis across IT and vendors by acting as an advocate of security analysis and the overall information risk team
Talent is the essence of meeting our client’s objectives, goals and challenges. If this sounds like a fit for you, we’d love to have that first discussion of you joining our team.
Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering or related field
3-5 years related experience in information security, risk, compliance, or similar position
Knowledge of security technologies (encryption, data protection, network intrusion prevention, host intrusion prevention, firewalls, privilege access, etc.)
Knowledge of enterprise IT security concerns and technologies, including but not limited to VPNs, network security, encryption, authentication, application-level network protocols, PKI, IPSec, Firewall, SSH, SSL, DES, LAN/WAN, and TCP/IP
Knowledge of security best practices with relation to applications, network and client setups
Experience with governance, compliance and audit within IT environments
Experience of risk management, including risk analysis, mitigation and monitoring
Knowledge of information security regulations applicable to WSP
Exercise responsible and ethical decision-making regarding company funds, resources and conduct and adhere to WSP’s Code of Conduct and related policies and procedures
Proven track record of upholding workplace safety and ability to abide by WSP’s health, safety and drug/alcohol and harassment policies
Master's degree in Information Technology, Computer Science, Engineering or related field
Certification in Information Security (CISSP, ISC, or CISM) practices and policies
About WSP USA
WSP USA is the U.S. operating company of one of the world's leading engineering and professional services firms. Dedicated to serving local communities, we are engineers, planners, technical experts, strategic advisors and construction management professionals. WSP USA designs lasting solutions in the transportation, buildings, energy, water and environment sectors. With nearly 9,500 people in 150 offices across the U.S., we partner with our clients to help communities prosper.www.wsp.com/usa
WSP provides a comprehensive suite of benefits including medical, dental, vision, disability, life, and retirement savings focused on a providing health and financial stability throughout the employee’s career.
At WSP, we want to give our employees the challenges they seek to grow their careers and knowledge base. Your daily contributions to your team will be a key piece in our meeting client objectives, goals and challenges. Are you ready to get started?
WSP USA Inc., WSP USA Buildings Inc., and WSP USA Services Inc. (collectively “WSP USA”) is an Equal Opportunity Employer
Race/Age/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Disability or Protected Veteran Status
The selected candidate must be authorized to work in the United States.
Relocation assistance is not available for this position.
WSP USA Inc., WSP USA Buildings Inc., and WSP USA Services Inc. (collectively "WSP USA") is an Equal Opportunity Employer Race/Age/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Disability or Protected Veteran Status