Ingalls Information SecuritySOC Analyst Intern
Jan. 2022 - Mar. 2022Remote● Learn to triage security alerts to differentiate between true malicious incidents and false positives (a non-malicious activity that matched alert rules) ● Communicates with Analysts security vulnerabilities, recommendations, and periodic overviews of security risk rating for the client network. ● Monitor client logs and alerts to detect any suspicious activity on the network and on endpoints using a variety of SOAR, SIEM, and XDR tools including but not limited to Siemplify, Cylance, and Sentinel One.
● Work with various Sandbox and detection tools that include but are not limited to Joe Sandbox, Virus Total, Hybrid Analysis, AlienVault, AbuseIPDB, Spur, Urlscan.io, and Spambrella. ● Investigates emails to determine the legitimacy of the email using headers and sandboxes.