Security Operations Center (SOC) Analyst II (L2)

Overview

Who we are

Security Operations Center (SOC) Analyst II

Plano, TX

Who we are

Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world’s most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We’re looking for diverse, talented team members who want to Dream. Do. Grow. with us.

An important part of the Toyota family is Toyota Financial Services (TFS), the finance and insurance brand for Toyota and Lexus in North America. While TFS is a separate business entity, it is an essential part of this world-changing company – delivering on Toyota’s vision to move people beyond what’s possible. At TFS, you will help create best-in-class customer experiences in an innovative, collaborative environment.

To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position at this time.

Who we’re looking for:

The Security Operations Center (SOC) Analyst II role will be responsible for helping a hybrid SOC with 24x7x365 coverage and responding to alerts, notifications, communications, and providing incident response activities. They will support daily SOC operations, including but not limited to: Alert analysis/triage/response, review and action on Threat Intel for IOCs and other operationally impactful information, and understanding of SOC operations requirements and policies. The SOC analysis tasks will be end-to-end, including the network, underlying servers, and infrastructure (physical and virtual) as well as the application. Candidates will be required to perform SOC triage and response analysis, uncovering attack vectors involving a variety of malware, data exposure, and phishing and social engineering methods.

This person will be a self-directing, organized, and effective communicator (verbal and written) who can transfer industry, business, and stakeholder requirements into scalable, cost efficient, and performance driven solutions.

What you’ll be doing 

• Monitor Security Alerts: Continuously monitor security alerts from various sources, including SIEM, IDS/IPS, firewalls, and endpoint protection tools.

• Threat Analysis: Analyze and investigate potential security threats and vulnerabilities.

• Documentation: Document incidents, actions taken, and outcomes in a clear and concise manner.

• Collaboration: Work closely with other SOC team members and departments to ensure comprehensive security coverage.

What you bring

• 2+ years of progressive, broad based Information Security (IS) experience participating in projects and playing a key role toward successful security operations

• Strong understanding of Cyber Threat TTPs, Threat Hunt, and the application of the MITRE Attack Framework

• Strong experience supporting 24x7x365 SOC operations including alert and notification activities- analysis/triage/response, review and action on Threat Intel for IOCs and other operationally impactful information, initial review and triage of reported alerts and Incidents

• Strong experience and understanding of event timeline analysis and correlation of events between log sources

• Strong experience with an enterprise SIEM (i.e. Splunk, Exabeam, Chronicle, etc) or security analytics solution and understanding of security incident response processes

• Strong experience ability to use, contribute, develop and follow Standard Operating Procedures (SOPs)

• Extensive Experience with triage and resolution of SOC tasks, including but not limited to: vulnerability announcements, phishing email review, Tier 1 IR support, SIEM/Security Tools - alert analysis

• Knowledge and experience in security and regulatory frameworks including ISO 27001, SOX, NIST, etc.

• Bachelor’s degree in Computer Science, Information Security, or a related field, OR equivalent years of experience in the role

Added bonus if you have

• Relevant certifications such as GSEC, OSCP, GCIH, etc.

• Experience with global security operations and response

• Extensive Experience with triage and resolution of SOC tasks, including but not limited to: vulnerability announcements, phishing email review, Tier 1 IR support, SIEM/Security Tools - alert analysis

What we’ll bring 

During your interview process, our team will provide detailed information about our industry-leading benefits and career development opportunities. Here are a few highlights: 

• A work environment built on teamwork, flexibility, and respect. 

• Professional growth and development programs to help advance your career, including tuition reimbursement. 

• Team Member Vehicle Purchase Discount. 

• Toyota Team Member Lease Vehicle Program (if applicable). 

• Comprehensive health care and wellness plans for your entire family. 

• Toyota 401(k) Savings Plan with a company match, plus an annual retirement contribution from Toyota regardless of your own contributions. 

• Paid holidays and paid time off. 

• Referral services for prenatal services, adoption, childcare, schools, and more. 

• Tax advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA) . 

• Relocation assistance (if applicable). 

Belonging at Toyota

Our success begins and ends with our people. We embrace all perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members’ efforts to dream, do and grow without questioning that they belong.

Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law.

Have a question, need assistance with your application or do you require any special accommodations? Please send an email to talent.acquisition@toyota.com.