استخدام SOC Analyst
شرح موقعیت شغلی
Job description:
As a member of SOC, the candidate will contribute to the operation of SOC team, including tooling (SIEM services, Vulnerability management, Threat management, reporting etc.), responding to and supporting incident management and SOC processes along with all aspects of monitoring logs and security events of computer systems, network devices, applications, and databases.
The job requires a basic understanding of attack vectors, current threats, and remediation strategies. Most importantly, you will have a desire to learn and build strong relationships with your colleagues within the SOC and with other teams within the business.
The job requires a basic understanding of attack vectors, current threats, and remediation strategies. Most importantly, you will have a desire to learn and build strong relationships with your colleagues within the SOC and with other teams within the business.
Key Duties and Responsibility:
- Responsible for the execution/ adherence to of day-to-day operations / daily checks / processes.
- Act as a subject matter expert specifically for SIEM and related / dependent technologies (log aggregation etc).
- Ensuring that cyber playbooks / runbooks are utilized for the most common / prevalent attacks.
- To threat hunt and report, within the network for a specific number of hours per week, looking for anomalies, misconfigurations or suspicious network activity utilizing the telemetry data available in SIEM.
Competencies and skills:
- 2 years security experience covering SIEM / SOC experience or equivalent security role within another organization.
- asci hands-on experience in searching for and helping to identify anomalies, malicious network traffic patterns and other threats.
- Understanding of security concepts, exploits, and technologies - Having knowledge of attacks and exploits common in the wild, support root cause analysis and mitigation strategies.
- Basic understanding of the Miter Attacks framework.
- Basic understanding of Network Protocols (e.g. TCPIP, UDP, HTTP(S)).
- Basic understanding of how vulnerabilities, configuration and exploits effectively increase the risks to business.
مهارتهای مورد نیاز
- soc
- Linux
- siem
- Apache
- مرکز عملیات امنیت
حداقل سابقه کار
- کمتر از سه سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- مهم نیست