This site uses cookies. To find out more, see our Cookies Policy

SOC Analysts - Houston, TX - Full Time in Houston, TX at Vaco

Date Posted: 5/6/2019

Job Snapshot

Job Description

Vaco has multiple openings for Level 2 and Level 3 SOC Analysts for full time opportunities in Houston, TX. Qualified candidates must have the following:

  • Bachelor's Degree in Cyber Security
  • Or Bachelor's Degree in Computer Science, Management Information Technology, or a closely related field AND Cyber Security Experience or certified coursework (e.g. SANS, GIAC, ISACS, etc.)
  • Information Security Experience:
    • For L2: 3-5 years (IR or SOC experience highly desired)
    • For L3/IR: 5-10 years
  • Must be able to work flexible hours including early/late shift, weekends, and public holiday
  • Fluent in English
  • Good communication skills
  • Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette
  • Keen to continue self-development

L2 SOC analyst - 1 to 2 openings at this level

L2 SOC analyst is expected to:

  • All skills required of an L1 SOC analyst
  • In-depth knowledge of at least 10 of the skills listed in the "Technical Skill" section
  • Must be able to research, develop, and communicate solutions to detected security incidents in a timely manner
  • Use strong TCP/IP networking skills to perform network analysis to isolate and diagnose potential threats and anomalous network behavior
  • Look after main SOC KPIs and create the performance reports
  • Mentor L1 analysts

L3/IR SOC analyst - 2 to 4 openings at this level

L3/IR SOC analyst is expected to:

  • All skills required of an L2 SOC analyst
  • In-depth knowledge of most of the skills listed in the "Technical Skill" section
  • Analyze Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
  • Ability to perform basic malware reverse engineering
  • Ability to perform memory analysis using Volatility or Rekall
  • Leverage forensic tools such as FTK, X-Ways, SIFT as part of an investigation
  • Use both internal and external threat intelligence to build indicators of compromise into monitoring tools, and provide data enrichment
  • Conduct security gap analysis assessments, penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities
  • Maintain and employ a strong understanding of advanced threats, continuous vulnerability assessment, response and mitigation strategies used in cybersecurity operations
  • Mentor L1 and L2 analysts
  • For L3/IR positions, ability to obtain a US Security Clearance is a strong advantage

Current (not future/or planned) Certification are preferable


  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • SANS GIAC certification in Cyber Defense, Penetration Testing, or Incident Response and Forensics
  • EC-Council certification: CEH, ECSA, CHFI, CND
  • Cisco Certified Network Associate (CCNA) - Network or Security

  • **No 3rd party resumes will be accepted.***