Senior Specialist, SOC Analyst II. Job in Stamford LilyLifestyle Jobs

At KPMG, we are dedicated to transformation and advancement in our Advisory practice, offering fantastic opportunities for individuals looking to elevate their careers and expertise. Our environment nurtures both personal and professional growth, creating new pathways for success. In this evolving market, we value adaptability and the strength of a collaborative team culture. If you seek a workplace where you can truly be yourself, make an impact, enhance your skills, and explore new areas of growth, consider joining our Advisory team.

KPMG is excited to invite a Senior Specialist, SOC Analyst II to our Advisory Services practice. Responsibilities:

• Lead advanced security event investigations and incident triage, focusing on IOC validation, in-depth intrusion analysis, event correlation, forensic reviews, and determining incidents that necessitate engagement from the Incident Response team.
• Provide guidance and mentorship to Level 1 Analysts, ensuring they deliver consistent and timely SOC processes, shift metrics, and event handling across SIEM platforms.
• Work closely with MDR Analysts in managing incident workflows, supporting detection, response, and remediation efforts while facilitating effective communication across teams for efficient incident resolution.
• Enhance SOC capabilities by optimizing technology through SIEM filter creation and tuning, developing dashboards and monitors, and collaborating with SIEM Engineers to refine alert logic and boost correlation performance.
• Engage in proactive threat hunting, conduct threat research, and utilize internal and external intelligence sources to strengthen event enrichment and detection capabilities, as well as overall SOC maturity.
• Troubleshoot and provide support for IDS/IPS systems, firewalls, and security monitoring tools to resolve any detection quality, performance, or visibility issues.
• Uphold the values of integrity, professionalism, and personal responsibility, contributing to a respectful and courteous work environment. Qualifications:
• A minimum of three years of relevant technical experience in Information Security, System Administration, or Network Engineering, with a strong background in SOC, MDR, and Incident Response.
• A bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or a related discipline is required.
• Solid understanding of network security principles, intrusion detection, incident response, malware analysis, cyber forensics, SIEM concepts, and security best practices.
• Hands-on experience with scripting languages (PowerShell, Bash, Perl, Tcl, Lua), programming (C/C++, C#, Python, JavaScript, .NET), packet analysis tools, and common security platforms such as Google SecOps, MS Sentinel, CrowdStrike, Splunk, Qradar, LogRhythm, and SolarWinds.
• Strong communication, analytical, client-facing, and problem-solving skills, capable of thriving in fast-paced environments with adaptability to shifting priorities, including off-hours work (nights/weekends/holidays).
• Familiarity with IDS/IPS, firewalls (e.g., Snort, Cisco, Fortigate, Sourcefire), Windows and Unix-based systems, LAN/WAN technologies, TCP/IP, OSI model, penetration testing tools (such as Metasploit, Nmap, Kali), and incident response workflows.
• Willingness to travel as needed.
• All applicants must be authorized to work in the U.S. without requiring employment-based visa sponsorship now or in the future.

KPMG offers a comprehensive compensation and benefits package, including medical and dental plans, vision coverage, life insurance, and retirement plans. We prioritize our team's well-being and encourage you to join us to help shape the future of advisory services.