Job Description
Job Description
Job Description
Apply now: Sr. SOC Support Analyst, location is 100% Remote. The start date is ASAP for this contract positio n.
Job Title: Sr. SOC Support Analyst
Location-Type: 100% Remote (EST or CST Hours)
Start Date Is: ASAP
Duration: Contract
Compensation Range: $40-45 Per Hour W2
- The estimate above represents the candidate's typical compensation range at the time of hire. Several factors may be utilized to determine your salary including but not limited to years of experience and specific skillsets compared to employees in this role. Candidates typically start at the lower half of the estimated range.
- This role is eligible to enroll in both Mondo's health insurance plan and retirement plan. In addition to this, this role is entitled to company-paid holidays, paid time off and Mondo's FUEL program.
SOC Audit Analyst - Responsibilities would Include:
- Review/upgrade audit framework documentation, testing flows, and procedures.
- Actively participate in the process of obtaining requested evidence.
- Initiate the requests for information evidence for business owners involved in the regions
- Perform and follow up the checkpoints as documented in the testing procedures
- Be a contact point between Global and Regional control owners for the controls in scope
- Prepare the answers/requirements for external auditors
- Review quarterly/monthly the controls execution and perform follow-ups with the control owners
- Gather SOC metrics for publication and to support the audit function
- Access rights/provisioning/de - provisioning/segregation of duties/ reviews
- Privileged access rights challenges
- Direct access to databases or data files
- Different access levels/Operating System/Application/Web Application/Database/Active Directory
- High-level knowledge regarding networks/cloud/on-prem -hybrid
- Batch jobs processing /scheduling (configurations/updates/backups)
- Real time-processing (config changes/transactions recording/completeness)
- Endpoint security (antivirus/antimalware/data loss prevention)
- Logs and logs management challenges
- Incidents and problem management
- Change management
- Disaster recovery and business continuity
- Skills, experience, and qualifications
- Ability to communicate clearly with colleagues at all levels.
- Well-developed listening and questioning techniques supported by analytical skills.
- Team player.
- Project management skills – nice to have.
- Looking for continuous improvement.
- CISA/SOX/ISO certifications or related are a plus.
- IT Audit, SOX, ISO – previous experience is a plus.
- Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field
- Relevant and practical experience and related education
- Excellent written and spoken English
- Ability to work independently with low-level supervision and in a global team distributed geographically
- Strong organization skills (set priorities meet deadlines, multiple simultaneous projects) and excellent documentation skills
- Excellent analytical and diagnostic problem-solving skills with the ability to provide solutions to identified problems
- Ability to communicate problems in terms that are understandable to end users at all levels
- Demonstrated experience in understanding, designing, delivering, and demonstrating compliance with information security requirements
Must Haves :
Must be in EST or CST timezone
Looking for a hands-on individual, this is not a manager or supervisor role
Risk assessment process and procedures
ISO 27001 has multiple controls required to be implemented, around 100 - Change management control is only one of them.
Experience auditing and creating processes for INFOSEC
From Day 1 ability to work on their own & don't need any handholding – minimally 2 years with ISO27001
Designing processes, making links between processes, documentation & requirements
Knowledge of key terms in the infosec space
Experience working in large, complex infrastructures
Nice to Haves:
Certs
SOX (Sarbanes Oxley Act)
Cyber Security framework
Job Tags
Hourly pay, Contract work, Immediate start, Remote work,