• Execute SOC Operational Strategy • Oversee all global SOC operations, ensuring alignment with MassMutual’s cybersecurity strategy and regulatory requirements • Review SOC metrics, staffing needs, and budget requirements with security leadership • Drive Threat Detection & Incident Response Excellence • Lead the response to cybersecurity events and critical incidents, ensuring appropriate analysis, prioritization, escalation, and communications • Ensure structured and consistent incident handling processes across all SOC tiers • Strengthen Enterprise Communication & Decision Support • Act as the escalation and communication liaison with senior leadership and other critical stakeholders • Ensure timely, risk-aware decisions and clear communication of incident impacts and recommended actions • Advance Detection Engineering & Automation Capabilities • Partner with Detection Engineering and Security Platforms to optimize SIEM/SOAR alerting logic, tuning, and playbook development • Expand automation to improve analyst efficiency and response consistency • Develop & Inspire a High-Performing Global Team • Guide analyst growth through training, mentorship, certifications, and hands-on exercises • Foster a culture rooted in MassMutual values of inclusion, innovation, and continuous improvement

• Active Incident Response: Lead the identification and mitigation of high-impact security events. You will analyze sophisticated traffic patterns and implement precise countermeasures, including rate limiting and custom WAF & Security rules to neutralize threats in real-time. • Managed Security Delivery: Serve as a primary security consultant for MSS Customers. This involves continuous tuning and refining of security policies to optimize detection accuracy and maintaining a hardened security posture tailored to each client's unique environment. • Advanced Threat Hunting: Conduct data-driven investigations using log analysis to uncover potential threats and hardenings opportunities • Security Intelligence & Reporting: Author comprehensive After Action Reports (AARs) and monthly security summaries. You will translate complex telemetry and attack data into high-level actionable insights for customer stakeholders. • Strategic Communication: Act as the Subject Matter Expert (SME) during active security incidents. You will provide clear, calm, and professional guidance via real-time communication channels, ensuring customers are informed and confident in our defensive strategy.

• A SOC intern assists the Security Operations Center team by monitoring security alerts and events in real-time • Analyzing potential threats • Investigating incidents • Learning to respond to cybersecurity issues using various security tools, all while gaining practical experience in the field of cybersecurity under the guidance of experienced analysts • Key responsibilities include threat monitoring, incident triage, log analysis, and reporting on potential security breaches.

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations. Join Accenture Federal Services, a technology company within global Accenture. Recognized as a Glassdoor Top 100 Best Place to Work, we offer a collaborative and caring community where you feel like you belong and are empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more. Join us to drive positive, lasting change that moves missions and the government forward! The Work The Cybersecurity Incident Response Junior Analyst and Triage Analyst role will work in the CIRT team in the CISO organization. This role works on a shift under the analysis and triage team lead to relate, scope, and triage alerts and notifications from the SIEM, security sensors, ticketing system, walk-ins, and phone calls. Requires technical understanding to collaborate with the incident response and operations teams to qualify events as relevant and determine true and false positives. Knowledge in incident response lifecycles, common cyber-attacks, and federal incident reporting requirements. Primary responsibilities: - Actively monitor and respond to cybersecurity incidents related to alerted policy violations - Analyze and investigate incidents to determine their nature and scope. - Coordinate with the lead and other Cybersecurity Incident Response Teams for effective incident resolution. - Document incidents and response activities in detail. - Stay updated with the latest cybersecurity threats and trends. - Assist in developing and refining incident response strategies and procedures. - Collaborate with operations teams, legal, human resources and management to investigate security issues and interview investigation subjects to determine true and false positives. What you need - US Citizenship required - 1 - 2 years of experience in information security, or other equivalent combination of education or equivalent work experience. - 1-year of experience performing event and log analysis including one or more of the following: Anti-Virus, - Intrusion Detection Systems, Firewalls, Active Directory, Web Proxies, Data loss prevention tools and other security tools found in large enterprise network environments; along with experience working with Security Information and Event Management (SIEM) solutions. - Excellent written and oral communication skills, attention to detail, and interpersonal skills. - Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host-based intrusion detection systems, and other security software packages. - Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host-based intrusion detection systems, and other security software packages. - Familiarity with TCP/IP, common application layer protocols, and packet analysis of the same. - Familiarity with static and dynamic malware analysis concepts. - Experience with indicators of attack and compromise. - Familiarity with Windows / Linux architecture and endpoint analysis of the same. - Familiarity with basic data parsing and analysis tools, i.e., Excel, grep, sed, awk, regex, etc Bonus if you have - SANs GIAC Certifications including but not limited to GCED, GCLD, GCIH, GCFA, GREM As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland. The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set, and level of experience. Accenture Federal Services offers a wide variety of benefits. You can find more information on benefits here. We accept applications on an on-going basis and there is no fixed deadline to apply. The pay range for the states of California, Colorado, Hawaii, Illinois, Maryland, Massachusetts, Minnesota, New Jersey, New York, Washington, Vermont, the District of Columbia, and the city of Cleveland is: $57,200—$109,400 USD What We Believe As a company wholly dedicated to serving the US federal government, we bring together the best talent to help reinvent how federal agencies operate and deliver greater value for their mission and the American people. We have an unwavering commitment to creating a culture in which all our people are respected, feel a sense of belonging, and have equal opportunity. As a business imperative, every person at Accenture Federal Services has the responsibility to create and sustain a culture where everyone feels welcomed and included. This is grounded in our core values and our experience that hiring and developing great people who reflect different perspectives, experiences, and backgrounds is key to driving innovation and delivering the results that our clients and the country count on. Equal Employment Opportunity Statement We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities. For details, view a copy of the Accenture Federal Services Equal Opportunity Policy Statement. Accenture Federal Services is an Equal Employment Opportunity employer. Additionally, as an Affirmative Action Employer for Veterans and Individuals with Disabilities, Accenture Federal Services is committed to providing veteran employment opportunities to our service men and women. Requesting An Accommodation Accenture Federal Services is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture Federal Services and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you are being considered for employment opportunities with Accenture Federal Services and need an accommodation for a disability or religious observance during the interview process or for the job you are interviewing for, please speak with your recruiter. Other Employment Statements Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States. Candidates who are currently employed by a client of Accenture Federal Services or an affiliated Accenture business may not be eligible for consideration. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information. California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.