Skip Navigation

Sign in to search with your linkedin profile

SOC Tier II Analyst

Apply Now
Businesses Otis Job ID 01362877 Date posted 10/17/2019 City Arlington State Virginia Country United States

Date Posted:



United States of America


OT555: Digital Technology Office 1300 Wilson Blvd , Arlington, VA, 22209 USA

At Otis, we move billions of people every day. How? Through our talented team of more than 68,000 employees who are passionate about what we do and what’s next. From our foundation of excellent products (escalators, elevators and moving walkways) to our next chapter of digital transformation, this is a great time to join us as an SOC Tier II Analyst, based in Arlington, Virginia.

This cybersecurity analyst role will be responsible for analyzing and synthesizing information with other relevant data sources; providing guidance and mentorship to others in cyber-threat analysis and operations; evaluating, interpreting and integrating all sources of information; and fusing computer network attack analyses with relevant cyber-threat intelligence products. The position is an integral member of the Cybersecurity Operations team, the operational arm of Otis’ Cybersecurity & Risk Management organization.

  • Essential Responsibilities
    • Works with alerts from SOC Tier I SOC Analysts to perform in-depth analysis and triage of network security-threat activity based on computer and media forensics, malicious code analysis and protocol analysis
    • Assists in the development of incident response plans, workflows and standard operating procedures (SOPs)
    • Deploys and maintains security sensors and tools
    • Monitors security sensors and reviews logs to identify intrusions
    • Works directly with cyber-threat intelligence analysts to convert intelligence into useful detection
    • Collaborates with the incident response team to rapidly build detection rules and signatures, as needed
    • Identifies incident root cause and takes proactive mitigation steps
    • Reviews vulnerabilities and tracks resolution
    • Reviews and processes threat-intelligence reports and sources
    • Develops and implements detection-use cases
    • Develops and implements intrusion detection system (IDS) signatures
    • Assists with incident response efforts
    • Creates and briefs senior-management reports
    • Participates in on-call rotation for after-hours security and/or engineering issues
    • Performs corporate security assessments
    • Develops and runs table-top exercises
    • Develops and leads continuous monitoring efforts to assist in maturing cyber prediction, prevention, detection and response capabilities

  • Education/Certifications
    • A bachelor’s or advanced degree in computer science, engineering, information systems or a related discipline, or equivalent experience, is required
    • IT security-related credentials (e.g., CISSP, CISA, Sec+ and/or GCIH) preferred

  • Basic Qualifications
    • Seven to ten years of IT experience
    • Three-plus years of experience working in an SOC environment
    • Experience with critical thinking, problem-solving and analytic concepts
    • Real-world experience analyzing complex attacks and an understanding of the tactics, techniques and procedures (TTPs) of threat actors
    • Ability to define relationships between seemingly unrelated events through deductive reasoning
    • Knowledge of advanced-threat actors and complex attacks
    • A solid technical understanding of operating systems, network architecture and design, Active Directory (AD) application log consumables, and systems design
    • Superior knowledge of technical operations processes and procedures
    • Ability to configure and develop an enterprise-wide security information and event management (SIEM) solution, including signature tuning, development of correlation rules, reports and alarms
    • Familiarity with a variety of web-application protocols, web services (components including JavaScript, XML and JSON), scripting capabilities (PowerShell and Python) software development frameworks, operating systems, and networking technologies
    • An understanding of various web-application frameworks, such as ASP.NET and J2EE

  • Preferred Qualifications
    • An understanding of the root causes of malware infections and proactive mitigation
    • Understanding of lateral movement and footholds
    • An understanding of data exfiltration techniques
    • Experience in network- and host-based intrusion analysis, malware analysis, forensics and cyber-threat intelligence
    • Knowledge of advanced-threat actors and complex attacks

This position will be located in the Washington, DC area.

Otis, a United Technologies company, is the world leader in reliable, efficient and technologically advanced elevators, escalators and people-moving systems. Our revolutionary Gen2® elevators, energy-saving ReGen™ drives and NCE “green” escalator have clearly set the industry standard for innovation, safety, and performance. More than 2.4 million Otis elevators and escalators are currently in operation throughout 200 different countries. We are proud to have a global team that continues to rise to the challenges of a fast-moving company. Together, the people of Otis are creating new ideas and opportunities by collaborating across time zones, geographies and cultures. So just imagine where we can take you!

United Technologies Corporation is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status.


United Technologies Corporation is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms

Apply Now

Your Saved Jobs

You have not saved any jobs.

Recently Viewed Jobs

You have no recently viewed jobs.

Sign Up for Job Alerts

Get the latest career opportunities as soon as they become available.

InterestedEnter category and/or location, then click ADD.

  • Information Technology, Arlington, Virginia, United StatesRemove