Cybersecurity SOC Analyst 

Levi Strauss & Company
Job LocationUS
Job TagEarly Career

Description:

Location: Remote

A strong moral compass, high integrity, and accountability are required to be a successful part of this team. Critical thinking is a major part of this role and you will be expected to articulate your thought process on a regular basis. Confidence in your ability to quickly learn from and adapt to unfamiliar scenarios will be paramount to our success. You will be part of several highly collaborative multi-national cross functional teams which will push your interpersonal skills.

Like all members of the LS&Co. Information Security Team, you will be an extended member of the Cybersecurity Incident Response Team. You will be expected to provide expert input and execute highly complex tasks during stressful situations.


You will need to maintain a strong knowledge of current security threats, techniques, attack types, as well as a dedicated and self-driven desire to research the current information security landscape. You will be expected to relentlessly seek to improve your knowledge and situational awareness of LS&Co. global business operations.


Demonstrate excellent communication skills, analytical abilities, sound judgment, and possess the ability to work effectively with internal team members, including IT staff, management and partners.


This will be rotational shift work during the day and evening.


You will also play a role in the LS&Co. Global Security Awareness Program, as educating our workforce and partners is large part of our cyber defense strategy. This can include supporting awareness content creation, maintenance, reporting, and providing insights for improving our curriculum.


Most notable is the expectation of personal growth and embracing the well-known, “other duties as assigned.” We run a lean team here at LS&Co., which will give you a greater opportunity for exposure to a breadth of technologies and challenges you simply cannot encounter elsewhere.

About Us:

At Levi Strauss & Co, we are revolutionizing the apparel business and redefining the way denim is made. We are taking one of the world’s most iconic brands into the next century: from creating machine learning-powered denim finishes to using block-chain for our factory workers’ wellbeing, to building algorithms to better meet the needs of our consumers and optimize our supply chain.

Qualifications:

  • 2-4 years of experience working within a 24×7 Security Operations Center.
  • Knowledge of email security threats and security controls, including experience analyzing email headers.
  • Analyze and correlate incident data to develop a preliminary root cause and corresponding remediation strategy.
  • General knowledge of Linux/Unix and Microsoft Security Logging Policies.
  • Practical knowledge of Network Application logs especially Proxies, IDS/IPS, VPN, and Stateful Firewalls.
  • General knowledge of Endpoint security events from technologies like Anti-Virus, EDR.
  • Understanding of Tactics, Techniques and Procedures (TTPs) used by threat actors.
  • Good understanding of the industry models such as the Cyber Kill Chains, Diamond Model and MITRE ATTCK framework.
  • Possess a security and analytical mindset, where the goal of triage and investigation is to determine why something occurred and whether it was expected in the environment.
  • Understanding of the incident response lifecycle at both technical and procedural level.
  • Ability to document the triaging methods followed to investigate a security event.
  • General understanding of Sandbox analysis.
  • Actively participate in our goal to continuously improve the way we work; identify improvement areas on our technology, process and techniques to enhance our detection and response capabilities.
  • Collaborate with the SOC Engineer in identifying use cases that leverage existing tools to enable automation and improve detection.
  • Good knowledge and demonstrated experience in incident response tools, techniques and process for effective threat containment, mitigation and remediation.
  • A security certification is welcomed, but not necessary or a requirement. In some instances, candidates are encouraged to work towards certifications while employed at LS&Co.

Cybersecurity: Industry Professionals Share Tips and Tidbits

Two industry professionals from the Cybersecurity industry joined us for a webinar on Determining Which Cybersecurity Work Environment is Right for You. Read along as we highlight some key takeaways from that conversation where they discuss their work environments, workflows, and cultural impact.

Related Industries: Cybersecurity

STEM: Industry Professionals Share Tips and Tidbits

On International Women’s Day, a few of the ladies from Nike joined us for a discussion on women in STEM. Learn more about some of the key takeaways from breakout room sessions on Overcoming Barriers and International Work as a Woman in STEM.

Related Industries: Computer Science, Cybersecurity, Data Analytics, Data Science, FinTech, Product Management, Technology Project Management, Web Development