L1 SOC Analyst

Imaging Endpoints (IE) is an Imaging Technology and Imaging Clinical Research Organization (iCRO). We are passionately focused on our vision to Connect Imaging to the CureTM. Everything we do is aligned with this singular purpose. We work every day excited to advance imaging science, technology, and services to bring curative technologies to humankind. We have supported many of the most impactful new drug approvals in oncology, and we are seeking the most talented individuals globally that are passionate in their desire to assist us in our mission to customize each clinical trial’s imaging to optimize the opportunity to demonstrate efficacy.

Imaging Endpoints is based in Scottsdale, Arizona, with offices in Cambridge, Massachusetts; London, UK; Leiden, Netherlands; Basel, Switzerland; Hyderabad, India and Shanghai, China. We are an affiliate of HonorHealth, one of the largest healthcare systems nationally, and Scottsdale Medical Imaging Limited (SMIL/RadPartners), the largest private radiology group in the United States. We are recognized as the world’s largest and most preeminent iCRO in oncology.

The L1 SOC Analyst provides first-level support against security threats to Imaging Endpoints corporate systems and critical business processes. This position will perform tasks including monitoring, research, classification, and analysis of security events on all layers of the defense-in-depth model from the perimeter to the organization's mission-critical data. The L1 SOC Analyst must be agile and willing to learn and think outside the box to operate

effectively in an ever-changing threat landscape.

RESPONSIBILITIES

• Works with Innovation and IT Management to set Information Security (lnfoSec) team priorities, timelines, and strategies to support business objectives.
• Monitors developing cybersecurity events around the organization.
• Responsible to ensure all logged tickets are closed correctly and timely.
• Follows pre-defined actions to handle security alerts, including escalating to L2 team and other support groups.
• Performs monitoring, risk assessment, and analysis on security tools such as Anomaly
• Detection systems, firewalls, antivirus systems, proxy devices.
• Performs the assessment phase of the Vulnerability & Threat Management process.
• Executes daily ad-hoc tasks or leads minor projects as needed.
• Participates in daily and ad-hoc documentation-related tasks.
• Keeps the Security Operations Center runbooks and procedures updated.
• Creates and maintains operational reports for Key Performance Indicators and weekly and monthly metrics.
• Readily supports any security incident response investigation in the Group regardless of location and environment.
• Works closely with the Team Lead to review, provide feedback, and take actions to improve the methodology used in the Security Operations Center (SOC).
• Works with SIEM, EDR tools, and solutions.
• Actively participates in conducting network and host-based forensics.
• Involved in SOC effectiveness, ensuring a solid technological improvement pace to neutralize the latest threats.
• Works cross-functionally with teams to bolster threat intelligence, incident response, and overall security strategy.
• Participates in internal audits.
• Collaborates with internal Innovation and IT teams to maintain a Configuration Management
• Database (CMDB).
• Other duties as assigned.

EDUCATION AND EXPERIENCE

• A bachelor’s degree in IT, Cybersecurity, or any related field.
• At least three years of experience working in a SOC.
• Experience in Azure Active Directory, Compliance and Security.
• Experience in Microsoft Platform is a key skill.
• Experience working with SIEM and EDR tools and solutions.
• Experience with network forensics and host-based forensics.
• Experience dealing with incident responses in a cybersecurity capacity.
• Candidates with security certifications like CEH, CND, CompTIA Network+, and Security plus are preferred.

SKILLS

• Able to manage tools/process needed to perform vulnerability assessments such as application penetration testing or forensic analysis fields.
• Willingness to work in rotational shifts and available on-demand during incidents.
• Ability to work in strict compliance with all procedures, rules, and regulations.
• Maintain strict confidentiality of sensitive data, records, files, conversations, etc.
• Strong analytical skills to analyze complex processes/data.
• Must be self-motivated and able to grasp new concepts quickly.
• Have the drive to learn and a passion for improving skills within the cybersecurity field.
• Self-driven, ability to get the job done with little supervision, positive can-do attitude.
• Must have superior attention to detail and good oral and written communication skills.
• An inquisitive mindset to investigate non-obvious issues.
• Ability to excel working both independently and in a team setting.
• Service-oriented approach, flexible, and proactive.
• Experience assisting and supporting application and infrastructure teams to create a secure design.
• Strong communication skills – communicating with business stakeholders.
• Knowledge of encryption and authentication methods such as 2FA, DES, Digital Certificates, SSL, IPsec, and development of DMZ’s.
• Knowledge of intrusion detection (deep TCP/IP knowledge, and cybersecurity), various operating systems (Windows/UNIX), and web technologies (especially internet security).
• Able to read and understand packet level data, handle Network/Host Security products (NIDS/NIPS, firewalls, HIPS, AV, scanners, etc.) and understand security events from these tools.

IMAGING ENDPOINTS’ TEAM CHARACTERISTICS

• Passion to Connect Imaging to the CureTM and pursue a meaningful career by improving the lives of cancer patients through imaging
• Strong desire to be part of a dynamic, global team working closely together and growing year after year in a rewarding environment to help humanity through imaging
• Commitment and caring for our fellow team members, their families, and the communities IE serves - see Caring Endpoints
• Integrity and high ethical standards; we always do the right thing
• High intellect and ingenuity; we enjoy solving problems, finding a better way, and the challenge of making a difference by improving lives
• Structured, organized, detail-oriented, and self-motivated; we approach each day with a detailed plan and excitement to accomplish the day’s objectives while striving to improve ourselves and IE everyday
• Accountable; we do what we say and communicative effectively to meet deadlines; we enjoy advancing clinical trials, helping patients, and celebrating success
• High standard for excellence; we proof our own work, hold high standards for ourselves and our team, and always prioritize quality above all else.

PHYSICAL REQUIREMENTS

While performing the duties of this job, the employee is regularly required to use hands to finger, handle, or feel; reach with hands and arms and talk and hear. The employee is frequently required to sit. Specific vision abilities required by this job include close vision, color vision, ability to adjust focus.

Travel: Less than 10% (domestic and/or international)