Share this Job

SOC Analyst II

Date: Sep 9, 2022

Location: Atlanta, GA, US, 30308

Company: Norfolk Southern Corp.

#LI-JK1 #LI-Hybrid


Job Description:

Ensure the financial success of Norfolk Southern by protecting information systems from cyber disruption. Monitor the network environment using various tools to identify and investigate anomalous system security events. Perform daily tasks including monitoring, analysis, research, classification and recording of security investigations. Review threat intel feeds for emerging zero-day vulnerabilities and collaborate with the Threat Intel and Red Team members for related IOC’s and TTPS. Help grow and mature the current program.

Principal Duties:

  • Monitor security events received through alerts from SIEM or other security tools
  • Review alerts escalated by end users
  • Maintains records of security monitoring and incident response activities, utilizing case management and ticketing technologies
  • Perform Level 1 triage of incoming issues (initial assessment of priority of the events, initial determination of incident)
  • Determine risk and damage or appropriate routing of security or privacy data request
  • Monitor alert and downstream dependencies health
  • Monitors and analyzes Intrusion Detection Systems (IDS) and Security Information and Event Management (SIEM) to identify security issues for remediation
  • Provide incident response to end users for security incidents
  • Review and analyses of relevant event detail and summary information
  • Recognizes potential, successful, and unsuccessful intrusion attempts and compromises.
  • Participate in Incident response escalation team
  • Prepares briefings and reports of analysis methodology and results
  • Perform other duties as assigned

Job Related Experience:

Required Level: Entry Level



Preferred Level: Bachelor’s Degree (BS)

Preferred Majors: Computer Science or Information Systems, Specialization in Information Security/Assurance is a plus


Licenses / Certifications:

Preferred: Certified Ethical Hacker (CEH), CompTIA Security+, CompTIA CySA+

Skills Desired:

  • General network knowledge, TCP/IP troubleshooting
    • Understanding of common network services
    • Internet, email, DNS, authentication
  • Familiarity with log analysis
  • Knowledge of host-based firewalls, Anti-Malware, HIDS
  • General desktop OS and server OS knowledge
  • Strong analytical and problem-solving skills
  • Interpersonal skills to interact with customers, team members and upper management
  • Knowledge in some of the following areas
    • Network flows, PCAP Analysis
    • Web proxy
    • Forensics and Malware Analysis
    • Endpoint Protection
    • Intrusion Detection and Intrusion Prevention Systems
    • Vulnerability Scanning
    • SIEM

Work Conditions:

Environment:  Hybrid

Shift Work: No

On-Call: Yes

Weekend & After hours Work: As required

Travel Required: 0-2 Days per Month

Company Overview

Norfolk Southern Corporation (NYSE: NSC) is a Fortune 300 organization and one of the nation’s premier transportation companies. Its Norfolk Southern Railway Company subsidiary operates approximately 19,500 route miles in 22 states and the District of Columbia, serves every major container port in the eastern United States, and provides efficient connections to other rail carriers. Norfolk Southern is a major transporter of industrial products, including chemicals, agriculture, and metals and construction materials. In addition, the railroad operates the most extensive intermodal network in the East and is a principal carrier of coal, automobiles, and automotive parts.


At Norfolk Southern, we believe in celebrating our individuality. By leveraging the unique backgrounds and viewpoints of our employees, we can create a culture of innovation, respect, and inclusion. We know that employees thrive in a workplace where differing viewpoints, ideas, and experiences are freely shared and valued. As such, we encourage all employees to contribute their distinctive skills and capabilities to our organization.


Equal employment opportunities are available to all applicants regardless of race, color, religion, age, sex, national origin, disability status, genetic information, veteran status, sexual orientation, and gender identity. Together, we power progress.


Nearest Major Market: Atlanta