DigitalOcean
SOCAnalystII
Neural analysis suggests this role is
optimal for Mid candidates.
“SOC Analyst II at DigitalOcean. Skills: Security Operations, Incident Response, Threat Detection, Fraud Detection, Abuse Mitigation. Actively monitor SIEM, and internal dashboards for security events, fraudulent sign-ups, and platform abuses. Investigate, identify and prevent or mitigate abusive activities such as intrusion attempts, DDoS, malware distribution, phishing attacks, etc. originating from (or) to DigitalOcean Platform”
Industry & Context.
Consistently improving security as the platform scales, driving continuous improvement through data collection and correlation; Consistently improving security as the platform scales, driving continuous improvement through data collection and correlation
24/7/365 team
What They're Looking For.
Must Have
2 or more years of experience in Security operations, Knowledge of Security Information
Nice to Have
Ability to code, script, or automate classes of problems rather than handling them manually (eg. Python, Bash, Go, Ruby)
What You'll Do.
Actively monitor SIEM
and internal dashboards for security events
identify and prevent or mitigate abusive activities such as intrusion attempts
etc. originating from (or) to DigitalOcean Platform
Leverage industry standard security technologies such as SIEM
EDR and other monitoring tools to detect
investigate and respond to security alerts
Perform basic analysis of malicious scripts or binaries found on the platform to understand the threat actor's intent
Conduct a comprehensive analysis by correlating multi-source telemetry to map adversary TTPs
determine incident scope
and assess overall impact
Conduct proactive hunts to detect and eliminate security threats
Locating trends in abuse/threat vectors
communicating with leadership to apprise of extent
and advocating for appropriate product changes to prevent future occurrences
Work within a ticket management system with specific daily operational level targets completed with a quality resolution
responding to reporters and helping customers get back on the platform
Engineering approaches to gathering security data
turning it into useful insights
and working with tech teams to resolve threats
Responsible for the process to reduce false positives while preventing the bad-actors
Escalating security incidents to Senior Analyst or DFIR teams as needed for deeper analysis and remediation
Establishing an understanding of DigitalOcean’s entire production environment
from applications to infrastructure
keeping up-to-date with material changes and future directions
Building relationships with the other technical teams across our engineering and infrastructure functions
Investigate and analyze detections from a diverse set of security tools within a high-availability
24/7/365 operational environment to ensure proactive threat detection and continuous protection
Conduct thorough investigations of detections
evaluate the scope of the attack
identify affected systems
and determine the necessary steps for further analysis
Stay informed on emerging and existing threats by analyzing attacker tactics
and reviewing security event reports to proactively strengthen defenses
Responding to abuse reports and engaging with our customers to help them solve system compromises as well as secure their exposed services
How You'll Work.
Team & Collaboration
Building relationships with the other technical teams across our engineering and infrastructure functions; working with tech teams to resolve threats
Communication Scope
technical writing; presenting
Full Job Description
Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you’ll find your place here. We value winning together—while learning, having fun, and making a profound difference for the dreamers and builders in the world. Position Overview: We are looking for an Autonomous and proficient Security Analyst who is passionate about Cyber Security, Fraud and Abuse. As a Security Analyst at DigitalOcean, you will join a dynamic 24/7/365 team dedicated to identify, investigate, and prevent fraudulent activities against DigitalOCean’s Platform. You will not only do that, What You’ll Do: Actively monitor SIEM, and internal dashboards for security events, fraudulent sign-ups, and platform abuses. Investigate, identify and prevent or mitigate abusive activities such as intrusion attempts, DDoS, malware distribution, phishing attacks, etc. originating from (or) to DigitalOcean Platform. Leverage industry standard security technologies such as SIEM, EDR and other monitoring tools to detect, investigate and respond to security alerts. Perform basic analysis of malicious scripts or binaries found on the platform to understand the threat actor's intent. Conduct a comprehensive analysis by correlating multi-source telemetry to map adversary TTPs, determine incident scope, and assess overall impact. Conduct proactive hunts to detect and eliminate security threats. Locating trends in abuse/threat vectors, communicating with leadership to apprise of extent, and advocating for appropriate product changes to prevent future occurrences. Work within a ticket management system with specific daily operational level targets completed with a quality resolution. Vetting abuse claims, responding to reporters and helping customers ge
Applying for this SOC Analyst II role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about DigitalOcean?
Real rants from real employees. Read before you apply.