SOC Lead

Cerium Networks connects businesses to their potential. We are a recognized innovator and leading provider of a full suite of unified communications, contact center, network infrastructure, data center, and security solutions. Through our core values of Drive, Development, Collaboration, Flexibility, and Relentlessness we are a top place to work, provide a superior experience for our clients, and pursue sustainable growth. Cerium Networks is searching for a brilliant engineer like you!In this role you will have the opportunity to bring your experience as a SOC Engineer to assist in designing and building a state-of-the-art Security Operations Center as well as lead the team responsible for the daily operations of the SOC. You and the team will investigate, respond, and proactively patch solutions provided by Cerium Networks into our mid-market and enterprise class clients. Other responsibilities may include troubleshooting and resolving escalated issues involving voice/collaboration, video, data, security, wireless issues in a Cerium deployed or supported network.

• Be an instrumental part of the initial design and build of the Security Operations Center, working closely with our NOC leadership team.
• Reviewing alerts, alarms, dashboards, and reports to determine relevancy and urgency of cybersecurity threats, vulnerabilities, and incidents.
• Identifying, evaluating, mitigating, and reporting on security vulnerabilities in systems and the software that runs on them.
• Utilizing technologies including SIEM, IDS, IPS, AV, EDR, email gateways, and web gateways to detect and respond to cybersecurity threats.
• Collaborating with other teams to assess risk and coordinate response.
• Recommending detection mechanisms for exploit and or intrusion related attempts.
• Providing subject matter expertise on network-based attacks, network traffic analysis, and intrusion methodologies.
• Analyzing attachments and URLs for malicious code.
• Executing operational processes in support of response efforts to identified security incidents.
• Performing deep dive incident analysis by correlating data from various sources and determine if a system or data is impacted.
• Developing a working knowledge of all operating standards, practices, and procedures.
• Demonstrated competence using SIEM, IDS, IPS, AV, and EDR platforms.
• Strong understanding of common IDS/IPS architectures and implementations.
• Practical expertise with of TCP/IP Fundamentals.
• Knowledge of network level exploits.
• Strong understanding of IDS/IPS technologies, trends, processes, and methodologies.
• Deliver to client requirements and generate additional consulting work by understanding the client's need and showing them how modern technologies can further their business objectives.

• Salary Range: $120,000 to $140,000
• Actual compensation will vary and may be above or below the range based on various factors including but not limited to location, experience, and performance.

• Medical Insurance with a PPO and HDHP plan option
• Dental and Vision Insurance
• 401(k) matching contributions
• 15 days of PTO and 9 paid holidays
• Wellness program
• Employee Assistance Program

• 5+ years of security operations experience preferred
• 4 year degree preferred
• CISSP certification
• CISM certification
• Network and communications systems troubleshooting experience
• Experience with APIs and programmability
• Excellent analytical ability and communications skills
• Interpersonal relationship skills
• Ability to manage multiple tasks simultaneously
• Customer service skills and experience
• Strong organization abilities

• This position can be remote but individual must be based in Washington State.