Sr. SOC Support Analyst
Description:
Job Description
Job Title: Sr. SOC Support Analyst
Location-Type: 100% Remote (EST or CST Hours)
Start Date Is: ASAP
Duration: Contract
Compensation Range: $40-45 Per Hour W2
The estimate above represents the candidate's typical compensation range at the time of hire. Several factors may be utilized to determine your salary including but not limited to years of experience and specific skillsets compared to employees in this role. Candidates typically start at the lower half of the estimated range.
This role is eligible to enroll in both Mondo's health insurance plan and retirement plan. In addition to this, this role is entitled to company-paid holidays, paid time off and Mondo's FUEL program.
SOC Audit Analyst - Responsibilities would Include:
Review/upgrade audit framework documentation, testing flows, and procedures.
Actively participate in the process of obtaining requested evidence.
Initiate the requests for information evidence for business owners involved in the regions
Perform and follow up the checkpoints as documented in the testing procedures
Be a contact point between Global and Regional control owners for the controls in scope
Prepare the answers/requirements for external auditors
Review quarterly/monthly the controls execution and perform follow-ups with the control owners
Gather SOC metrics for publication and to support the audit function
Access rights/provisioning/de-provisioning/segregation of duties/ reviews
Privileged access rights challenges
Direct access to databases or data files
Different access levels/Operating System/Application/Web Application/Database/Active Directory
High-level knowledge regarding networks/cloud/on-prem -hybrid
Batch jobs processing /scheduling (configurations/updates/backups)
Real time-processing (config changes/transactions recording/completeness)
Endpoint security (antivirus/antimalware/data loss prevention)
Logs and logs management challenges
Incidents and problem management
Change management
Disaster recovery and business continuity
Skills, experience, and qualifications
Ability to communicate clearly with colleagues at all levels.
Well-developed listening and questioning techniques supported by analytical skills.
Team player.
Project management skills – nice to have.
Looking for continuous improvement.
CISA/SOX/ISO certifications or related are a plus.
IT Audit, SOX, ISO – previous experience is a plus.
Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field
Relevant and practical experience and related education
Excellent written and spoken English
Ability to work independently with low-level supervision and in a global team distributed geographically
Strong organization skills (set priorities meet deadlines, multiple simultaneous projects) and excellent documentation skills
Excellent analytical and diagnostic problem-solving skills with the ability to provide solutions to identified problems
Ability to communicate problems in terms that are understandable to end users at all levels
Demonstrated experience in understanding, designing, delivering, and demonstrating compliance with information security requirements
Must Haves:
Must be in EST or CST timezone
Looking for a hands-on individual, this is not a manager or supervisor role
Risk assessment process and procedures
ISO 27001 has multiple controls required to be implemented, around 100 - Change management control is only one of them.
Experience auditing and creating processes for INFOSEC
From Day 1 ability to work on their own & don't need any handholding – minimally 2 years with ISO27001
Designing processes, making links between processes, documentation & requirements
Knowledge of key terms in the infosec space
Experience working in large, complex infrastructures
Nice to Haves:
Certs
SOX (Sarbanes Oxley Act)
Cyber Security framework
Fully remote