This position continuously monitors the alert queue; triages security alerts; monitors health of security sensors and endpoints; collects data and context necessary to initiate IR response. In addition, the analyst will be responsible for maintaining multiple security technologies for detecting and preventing IT security incidents. What you'll be doing Monitor and defend network perimeter interfaces against malicious traffic. Analyze inbound and outbound network traffic for anomalies and threats. Perform real-time security event analysis using SIEM and other advanced security tools. Correlate and triage security alerts and indicators generated by monitoring systems. Investigate and respond to suspected phishing emails and related incidents. Manage and resolve cybersecurity-related requests received via phone, email, or internal ticketing systems promptly and accurately. Execute routine assignments and projects while applying deep knowledge of security operations. Identify and recommend process improvements to enhance efficiency and quality within the SOC. Ensure availability and proper functioning of security technologies, including IDS/ IPS, Web Application Firewalls, DLP, syslog servers, and vulnerability scanners. Stay current on emerging cybersecurity trends and technologies; assess their impact and collaborate with leadership to integrate improvements into security operations. Support organizational and departmental initiatives by promoting best practices and contributing to change management efforts. Makes a positive contribution as demonstrated by: Making suggestions for improvement and learning new skills, procedures and processes What we’re looking for Must Haves: 1 - 3 Years Experience with one or more of the following technologies: IPS, DLP, WAF, Content Filtering, Vulnerability Management. 1 - 3 Years Information Security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration. 4 Year/ Bachelor's degree or equivalent work experience General technical skills, includes TCP/ IP knowledge, networking and security product experience Knowledge of network- and host security technologies and products (such as firewalls, Network IDS, scanners) Nice to Haves: Agile Mindset; awareness/understanding of Agile methodologies (Preferred) General technical skills, includes TCP/ IP knowledge, networking and security product experience Knowledge of network- and host security technologies and products (such as firewalls, Network IDS, scanners) Certifcations: Comp. TIA Network , Comp. TIA Security , AWS Certificated Cloud Practitioner, or similar Application Deadline What’s it like to work here? At Lincoln Financial, we love what we do. We make meaningful contributions each and every day to empower our customers to take charge of their lives. Working alongside dedicated and talented colleagues, we build fulfilling careers and stronger communities through a company that values our unique perspectives, insights and contributions and invests in programs that empower each of us to take charge of our own future. What’s in it for you: Clearly defined career tracks and job levels, along with associated behaviors for each of Lincoln's core values and leadership attributes Leadership development and virtual training opportunities PTO/parental leave Competitive 401 K and employee benefits Free financial counseling, health coaching and employee assistance program Tuition assistance program