"Alerted.org

UNIVERSAL Technologies is seeking a Senior Threat Management Analyst with at least 8 years of experience in Threat Management, Security Operations Center (SOC), and Incident Response.

This is an on-site position in Brooklyn, NY. This position supports 24x7x365 monitoring and response efforts within a government SOC environment and requires flexibility for rotating day, night, weekend, and holiday shifts. The ideal candidate will possess strong leadership abilities, hands-on SOC experience, and the technical acumen to monitor, detect, and respond to threats in a dynamic enterprise environment.

WHO WE ARE

UNIVERSAL Technologies, LLC is a Women-Owned (M/WBE) IT solutions and consulting company focused on delivering enterprise systems that significantly improve our clients' IT performance. We work across the IT spectrum including Development, Business/Systems/Data Analysis, Project Management, Cyber Security, Network Engineering, and High-Level System Architecture.

We take pride in placing talented professionals on mission-critical technology projects that drive public sector transformation and operational excellence.

WHAT WE OFFER

Our W2 employees can expect the following benefits:

+ Competitive pay

+ Health/Dental Insurance

+ Group Life Insurance

+ 401K

+ HSA/FSA

+ Pre-Tax Transportation Program

+ Generous Paid Time Off/Holiday

MANDATORY SKILLS/EXPERIENCE

Candidates who do not have the mandatory skills will not be considered.

+ Minimum 8 years of experience in a Threat Management, SOC, or Incident Response environment

+ Prior experience working in a Security Operations Center (SOC), including:

+ SOC operations and procedures

+ SIEM (Security Information and Event Management) systems

+ Intrusion Detection/Prevention Systems (IDS/IPS)

+ Endpoint Detection and Response (EDR) tools

+ Demonstrated leadership ability, including mentoring junior analysts and coordinating SOC operations

+ Strong knowledge of cybersecurity principles, practices, and procedures

+ Deep understanding of network and host technologies

+ Experience detecting host and network-based intrusions using IDS methods and technologies

+ Proficiency with SIEM technologies, malware analysis, and mitigation techniques

+ Ability to apply cybersecurity and privacy principles to organizational requirements such as confidentiality, integrity, availability, authentication, and non-repudiation

+ Skilled in interpreting data from diagnostic tools such as NetFlow, event logs, and IDS systems

+ Strong analytical and complex problem-solving skills

+ Excellent verbal and written communication skills to effectively interact with both technical and non-technical stakeholders, including the SOC Director and senior leadership

+ Experience in proactive threat hunting to identify and investigate potential threats before escalation

+ Proven incident response capabilities including threat containment, risk mitigation, and effective recovery strategies

SCOPE OF SERVICES

+ Perform many critical functions within the Threat Management discipline including staffing 24x7x365 coverage at the City’s Security Operations Center (SOC) augmenting FTE shift schedules including days, nights, weekends, and holidays.

+ Interface with OTI Cyber Command teams internally, with City agencies, vendors, and information-sharing partners.

+ Monitor City networks and security alerts for intrusion, attempted compromise, and anomalous behavior; apply mitigation techniques or escalation factors; correlate threat intelligence across various logs collected by established security controls.

+ Produce routine SOC metrics & reporting.

+ Maintain situation reports (SITREPS)

+ Perform weekly quality control checks.

+ Works closely with SOC Director on incident preparation including the continuous development of new SOC playbooks and runbooks.

SPECIAL REQUIREMENTS

+ Candidate must be willing to work day, night, and/or weekend shifts as needed to ensure 24x7x365 coverage and support critical incident response activities.