We use cookies to personalise content, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners. For information on how to change your cookie settings, please see our Privacy policy. Otherwise, if you agree to our use of cookies, please continue to use our website.

SOC Analyst (Junior)- Cloud Hosting

Location: Columbia, MARYLAND.
Company Description:

Merkle is a leading data-driven, technology-enabled, global performance marketing agency that specializes in the delivery of unique, personalized customer experiences across platforms and devices. For more than 30 years, Fortune 1000 companies and leading nonprofit organizations have partnered with Merkle to maximize the value of their customer portfolios. The agency's heritage in data, technology, and analytics forms the foundation for its unmatched skills in understanding consumer insights that drive people-based marketing strategies. Its combined strengths in performance media, customer experience, customer relationship management, loyalty, and enterprise marketing technology drive improved marketing results and competitive advantage. With 5,500 employees, Merkle is headquartered in Columbia, Maryland, with 24 additional offices in the US and 25 offices in Europe and APAC. In 2016, the agency joined the Dentsu Aegis Network.

Job Description:

Merkle is looking for a highly motivated Security professional to work on an exciting FEDRAMP AWS Cloud solution. This position requires the ability to attain a US Government Security clearance and will focus on providing day to day operational security for a complex FEDRAMP cloud solution. 

This SOC Analyst will be responsible for platform security, data analysis, SIEM tuning in a cloud hosting environment, and incident response.  This candidate is expected to keep up to date on industry trends and deliver the highest level of customer service possible.

This Analyst role will report to the Director of IT Security.  The role will work with a team of geographically distributed Merkle staff and contract employees.

Requirements:

  • Must be able to attain a US Federal Secret clearance
  • Provides Security oversight for Cloud assets built on the AWS FedRamp platform
  • Must have background with Fedramp controls, addressing POAM’s, and securing applications in a federal cloud environment

Essential Tasks and Responsibilities: 

  • Lead the design and implementation of global, cost effective, enterprise-class systems following ITIL/ITSM processes/practices, while maintaining compliance with all company policies, procedures and standards
  • Participate in the development of technology roadmaps that align with overall IT strategy and vision
  • Provide support for all aspects of functional area, serves as an escalation point for Tier 2 support.  This includes on-call and after hours support, participation in the incident triage, and following a sound troubleshooting process
  • Accountable for process definition for daily security reviews, patch management, and reporting
  • Lead innovation, process improvement and standardization within the IT organization. 
  • Lead within discipline to develop best practices, case studies, training materials, and whitepapers.  Present at Architecture Review Board, Lunch and Learn sessions, and training sessions
  • Anticipate risks and constraints and proactively work on solutions to address the risk/constraints, escalating as appropriate      
  • Gather requirements, develop the delivery plan for solution and services milestones, managing expectations and coordinating delivery with internal team
  • Maintain in-depth awareness and fluency of the key features, functions, and/or industry trends around the area of expertise
  • Lead the evaluation process and recommend all product standards for Merkle infrastructure
  • Manage and prioritize multiple simultaneous incidents and Service Requests and drive resolution to technical incidents following the Merkle Incident Management Process
  • Perform post incident root cause analysis and write the associated RCA document
  • Platform Ownership for FEDRAMP Cloud Solution. A Platform Owner is responsible for:
  • Daily monitoring of Splunk SIEM
  • Daily, weekly, monthly compliance reporting
  • POEM response
  • Participating in the technology council in their respective field of expertise
  • Monitoring  and alerting – Ensure the primary functionality is properly monitored
  • Backups and Recovery – Ensure critical data and configuration information is identified/protected and a recovery model is in place and periodically tested
  • Capacity management – Develop capacity models, measure utilization and establish and maintain forecasts for tools associated with this Fedramp build
  • Develop maintenance plans and schedules
  • Security Incident tracking – Track the incidents that have occurred on the platform and the remediation activities performed
  • Lifecycle Management – Ensure that software and hardware are up to date
  • Ensure that supporting software is up to date and configured securely
  • Uphold and promote Merkle’s core values and culture

Measures of Success:

  • Consistently deliver IT solutions that exceed customer expectations on-time/budget
  • Successfully resolve technical incidents/service requests within SLA/OLA timeframe with a high level of quality, escalating where appropriate
  • Demonstrate a high level of customer service
  • Participate in the development of Merkle’s technology vision and strategy. 
  • Demonstrate the ability to work as part of a team and share knowledge with team members
  • Implementation and adoption of support processes and structures sufficient to ensure system stability and user satisfaction
  • Attain and maintain “expert level” recognition in Data Security
  • Contribute to the development and evolution of reference architectures
  • Positive recognition as noted on Employee and Customer satisfaction surveys, completed on a periodic basis
Qualifications:

Skills/Requirements:

Deep Knowledge of:

  • A focus on Enterprise level security tools and solutions, including, but not limited to: DLP technology, Web Proxy solutions, IDS/IPS solutions, SIEM (Splunk), and Firewall appliances
  • General networking, AWS Security Groups and ACL’s
  • Enterprise productization processes, including developing product guides, asset management, data protection, capacity management, performance management, and lifecycle management
  • Enterprise System Management tools
  • Scripting languages, such as Perl, Bash, Linux Shell, PowerShell/vbScript are a plus
  • Demonstrate the ability to:
  • Work with the Network Engineering and Security Compliance team to establish the best deployment methods for security related tools and services
  • Meet project deadlines and manage and prioritize multiple simultaneous projects while adhering to a time allocation model
  • Assess the scope and impact of incidents and respond, with a sense of urgency that matches the incident, following appropriate policies and procedures
  • Multi-task, prioritize, manage workload and adapt to changing business conditions
  • Tolerate stressful situations and remain focused under pressure    
  • Effectively communicate at all levels of the organization
  • Manage through conflict and challenging situations with positive outcomes for the clients and Merkle
  • Develop and cultivate strategic relationships that benefit IT and Merkle
  • Make decisions and judgments based on standard procedures
  • Demonstrate critical thinking and problem solving skills
  • Contribute to Managed Hosting standards and best practices for processes, procedures, and technical standards

Education and Experience:

  • Bachelor’s Degree in Information Technology or Computer Science preferred
  • 3+ years of experience supporting and implementing enterprise-class solutions operating in a 24/7 environment
  • 3+ years professional experience in designing technology solutions
  • 3+ Years in Data Security and Security Incident response
  • Current certifications within engineering discipline and IT industry (ITIL, CISSP, Security+) are highly desired
Additional Information:

All your information will be kept confidential according to EEO guidelines. At Merkle, we believe that a diverse environment improves us as a community and as a business. We want to foster an environment of growth, where all ideas and contributions are encouraged. We need this culture of courage to continue to thrive in our fast-paced industry. We embrace differences of opinion. We value diversity of experience and thought, which help us to challenge and define industry-leading solutions, and support our goal of being a great place to work.

More Information:

Graduate Opportunities: Whether you're still studying, recently graduated or are already working and fancy a career hop, we could have a perfect opportunity for you.
Experienced Hires: Leverage your expertise, challenge the status quo and grow your career at Merkle.

Still browsing?