SOC Analyst - Endpoint Detection & Response

About the position Seeking an SOC Analyst that possesses strong expertise in Endpoint Detection and Response (EDR) tools and cyber-security incident handling. The resource will be expected to provide security monitoring and response efforts for, and in coordination with the SOC. This is a remote position.

Responsibilities

• Monitor, analyze, and respond to cyber-security events, alerts, and incidents affecting State of Iowa IT systems.
• Take appropriate actions to protect IT assets from potential incidents and threats.
• Document and report changes, trends, and implications related to evolving cyber-security tools, systems, and solutions.
• Follow SOC processes and assist ISD Security Engineers and OCIO support teams during alerts, events, and incidents.
• Submit new events and update existing events within the SOC ticketing system.
• Provide phone and email support to state agencies and participating partners during alerts, events, and incidents.
• Provide off‑hours or ad‑hoc shift support as required.
• Support Tier 1 SOC Analysts in triaging cyber-security events, alerts, and incidents.
• Follow detailed operational procedures to analyze, escalate, and support remediation of critical security incidents.
• Assist with SOC metrics, reporting, and communications.
• Support incident response activities up to the preliminary forensics stage.
• Monitor EDR tools and perform initial assessment and data gathering for alerts.

Requirements

• Strong communication, reporting, and documentation abilities.
• Proven ability to collaborate effectively with partners across varying technical backgrounds.
• Capability to perform Tier 1 troubleshooting, including log collection, documentation review, and appropriate escalation.
• Maintain up‑to‑date knowledge on relevant cyber-security technologies and tools.
• Hands on experience working with Endpoint Detection and Response (EDR) tools (3 years)
• Experience responding to cyber security events and incidents (3 years)
• Experience working with Crowdstrike, or comparable EDR tool (3 years)
• Ability to work in high pressure, fast paced environments (3 years)

Benefits

• Paid Sick Time
• Insurance for Medical, Dental, Vision and Life Available
• 401(k) including Employer Match
• HSA, Short-term & Long-term Disability Available

Apply tot his job Apply To this Job