Careers - MAD Security

MAD Security Careers

Come join a team of some of the brightest and most innovative security experts around!

For Employees:

MAD Security offers a very competitive compensation package that includes base salary, medical, 401k matching, bonuses (we like to reward you for your hard work), training on next generation security tools, and flexible time off.

For Trusted Partners (1099):

We are also looking for partners that we can work with that can augment our skills and add depth to our team. We frequently receive requests for work that is a little out of our lane or that we can’t take on due to full bookings, and in those cases we like to work with trusted partners to create win/win scenarios.


MAD Security Career Postings:

Security Operations Center (SOC) Analyst - Huntsville, AL

Job Title
Security Operations Center (SOC) Analyst - Huntsville, AL
Job ID
27413760
Location
Huntsville,  AL
Other Location
Description

Security Operations Center (SOC) Analyst - Huntsville, AL

 

MAD Security is looking for a Security Operations Center (SOC) Analyst who will be responsible for day-to-day security threat monitoring and analysis of our client environments in our Security Operation Center located in Huntsville, Alabama.  Reporting to our Security Operations Center Manager, you will use the latest technology to detect, analyze and limit intrusions and security events while adhering to best practices and recognized control frameworks.

You will work collaboratively to detect and respond to information security incidents, maintain and follow procedures for security event alerting, and participate in security investigations. You will perform tasks including monitoring, research, classification and analysis of security events that occur within our client environments. You should have familiarity with the principals of network and endpoint security, current threat and attack trends, and a working knowledge of security principals such as defense in depth.

Essential Duties and Responsibilities

  • Perform network security monitoring and incident investigation for numerous clients.
  • Review and triage information security alerts, provide analysis, determine and track remediation, and escalate as appropriate.
  • Create, modify, and update Security Information Event Management (SIEM) rules.
  • Recognize potential, successful and unsuccessful intrusion attempts and compromises through review and analysis of relevant event detail and summary information.
  • Communicate incidents to clients regarding intrusions and compromises to their network environment.
  • Maintain records of security monitoring and incident response activities, utilizing case management and ticketing technologies.
  • Prepare briefings and reports of analysis methodology and results.
  • Create and maintain standard operating procedures and other similar documentation.
  • Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions.

Experience and Education

  • 2+ years of related experience in information technology or information security.
  • College degree or equivalent with experience working in a Security Operations Center, Managed Security, or client network environment
  • Prior experience working in any of the following three is a plus: Security Operations Center (SOC), Network Operations Center (NOC), Computer Incident Response Team (CIRT)
  • Achieved industry recognized professional certification is a plus such as Security+, CEH, GCIH, GCIA, etc.

Skills and Capabilities

  • Strong knowledge of current security threats, techniques, and landscape, and a dedicated and self-driven desire to research and learn more about the information security landscape.
  • Knowledge and understanding of network devices, multiple operating systems, and secure architectures.
  • Working knowledge of network protocols and common services
  • Ability to assess information of network threats such as scans, computer viruses, or complex attacks.
  • Ability to review and triage network and endpoint detection and response tools.
  • Ability to react quickly, decisively, and deliberately in a high stress environment.
  • Natural curious and inquisitive nature; persistent and determined; enjoys solving problems and puzzles; analytically rigorous; uncompromising integrity.
  • Ability to use scripting languages such as Python, Perl, PHP, Bash, PowerShell, Ruby, etc. is a plus
  • AT&T AlienVault SIEM knowledge and experience is a plus
  • Fortinet Technologies knowledge and experience is a plus

Option 2: Create a New Profile