• SOC Lead Analyst -III

    Job Locations US-MULTI-CITY
    # of Openings
    Job Category
  • Overview

    TUV Rheinland OpenSky is looking for a Security Operations Center (SOC) Analyst III-SME position to work in the Security Operations Center (SOC) unit. The primary purpose of this position is to develop security analytics to identify threats and perform threat hunting.  Lead incident response, issue resolution, and assessment or communication of security risk to the enterprise and provide SME support to the team monitoring real-time security alerts, identifying and prioritizing potential threats. Lead and support security incident investigations. Provide SME support for analyzing available data sources, security tools, and threat trends and lead security monitoring and analysis techniques to identify attacks. Create analytics and other logic to identify attackers and defend infrastructures against advanced attacks. This position involves critical duties and responsibilities that must continue during crises and contingency operations, which may necessitate extended hours of work.


    Key Responsibilities:

    • Responsible for working in a 24x7 Security Operation Center (SOC) environment
    • Develop analytics to provide monitoring of threats
    • Provide SME support for analysis and trending of security log data from many heterogeneous security devices
    • Lead Incident Response (IR) activities when analysis confirms actionable incident.
    • Conduct threat hunting activities
    • Provide threat and vulnerability analysis as well as security advisory services
    • Analyze and respond to previously undisclosed software and hardware vulnerabilities
    • Investigate, document, and report on information security issues and emerging trends.
    • Integrate and share information with other analysts and other teams

    Required skills:

    • Strong infrastructure or operations experience in UNIX/LINUX/Wintel environments 
    • Experience with AWS from an engineering perspective 
    • Experience with Identity and Access Management
    • 6+ years' experience as a Security/Network Administrator or equivalent knowledge
    • Extensive knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems)
    • Excellent skills in understand packet level data/logs in Network Security Products (IDS/IPS, firewalls, etc.) Host Security Products (HIPS, AV, scanners, etc.)
    • Expert knowledge of TCP/IP Protocols, network analysis, and network/security applications
    • Expert knowledge of common Internet protocols and applications
    • Expert understanding of regular expression and at least one common scripting language (PERL, Python, PowerShell).
    • Ability to multi-task, prioritize, and manage time effectively
    • Strong attention to detail
    • Strong collaborative skills and proven ability to work in a diverse global team of security professionals
    • Strong organizational skills
    • Strong English verbal and written skills
    • Excellent interpersonal skills

     Preferred skills:

    •  Experience with Sumo Logic

    Required Education:

    • Bachelor's degree in a related field or equivalent demonstrated experience and knowledge

             6+ years' experience as a Security/Network Administrator


    Preferred Education:

    • Technical Security Certifications - GCIA, GCIH, EC-Council or other related certifications preferred

    Travel Required:

    • None

    About TUV Rheinland OpenSky 


    TUV Rheinland OpenSky Corporation offers one of the most advanced and integrated portfolios of security solutions and services for connected devices, platforms and Internet of Things (IoT) with the mission to enable a secure and safe digital future. With headquarters in Littleton, MA, OpenSky is a 100% subsidiary of TÜV Rheinland, operating some of the world’s broadest smart device and IoT testing labs, defining industry standards for functional safety and security and is a leading provider of inspection and assurance services that combine safety, quality and security certifications.


    TUV Rheinland OpenSky provides expertise to help corporations protect information assets, minimize risk and accelerate the adoption of enabling technologies with its holistic approach and framework that addresses Cyber Security, Privacy, Cloud Infrastructure and Functional Safety requirements to build trusted, connected platforms. The portfolio of services supported by industry participation in defining such standards and research, enables clients to effectively stay at the forefront of adopting new technologies for managing safety and cyber risks. It provides advisory, consulting, systems integration and managed security services organized across three core disciplines for connected platforms:

    • Advanced Cyber Defenses
    • Mastering Risk and Compliance
    • Secure Cloud Adoption.


    OpenSky was founded in 2007 and was acquired by TÜV Rheinland Group in 2014 to expand and drive synergies within both companies to address the growing cyber security concerns across functional safety, inspection and assurance services (certification) as the world embraces digitization.


    For more information about TUV Rheinland OpenSky, please visit



    About TÜV Rheinland

    TÜV Rheinland is a global leader in independent inspection services, founded more than 140 years ago. The group maintains a worldwide presence with 20,000 employees and annual turnover of over EUR 1.9 billion. For more than 15 years, TÜV Rheinland has been supporting the private and public sectors with comprehensive consulting and professional services expertise in IT, cyber security and telecommunications through strategic consulting, design, digital transformation and process optimization solutions.


    For more information about TÜV Rheinland, please visit



    EEO Statement:

    OpenSky is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, marital status, national origin, genetics, disability, age, or veteran status.










    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed