استخدام SOC Security Analyst
شرح موقعیت شغلی
Job Description
- Analyzing security logs, tracing attacks, and reporting threats.
- Work independently with network/system administrators, developers, product owners, and other colleagues to ensure Mitigate threats, incident handling, and implementation of our applications
- Security Sensor configuration
- Integrating Organization Assets with SIEM
- Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
- Monitor and analyze logs and events daily, to determine whether any events could constitute a genuine security incident- Perform security monitoring, reviewing, investigating, and reporting the events generated by the SIEM.
- Follow-ups on incident investigation requests
- handling security incidents/alerts, investigate the root cause in collaboration with other Security teams, establish corrective controls and minimize the impact
- Research and incorporate the latest international trends in security operation management
- Documentation of SOC output (Analyzing Vulnerability Assessment reports, weekly/Quarterly SOC reports, and incident response reports)
- Ability to manage vulnerability and/or risk remediation
- Create queries, dashboards, and visualizations to detect incident/threats and monitor of SIEM systems.
- Configure Security application like: Antivirus, EDR and DLP
- Working hours: Ability to work in circular shifts as 7/24
Requirements
- Nature and length of previous experience: 2+ years’ Work Experience in Information Security
- University Qualifications: BSc or MSc in computer engineering or Information Technology
- Information security related certifications like Certified Ethical Hacker (CEH), SANS SEC 503, 504 are plus.
- Information Security certifications are considered as a plus
Specialist knowledge:
- understanding of information security concepts, standards and practices
- Mastering basic security concepts to a minimum level of Security + and CCNA Cyber FND
- Familiar with different attacks on different layers of standard TCP / IP model
- Familiar with Log structure
- Fluent in TCP / IP concepts (Minimum: Network + level)
- Knowledge of Networking, Operation Systems, Programming and Scripting.
- Each below criteria is a plus
- Familiarity with SIEM and Network Monitoring Tools
- Familiarity with MITRE ATT&CK, D3FEND and Shield
- Familiarity with Incident handling
- Understanding Anatomy Attack in any phase of Detect and Protect
- Analyzing security logs, tracing attacks, and reporting threats.
- Work independently with network/system administrators, developers, product owners, and other colleagues to ensure Mitigate threats, incident handling, and implementation of our applications
- Security Sensor configuration
- Integrating Organization Assets with SIEM
- Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
- Monitor and analyze logs and events daily, to determine whether any events could constitute a genuine security incident- Perform security monitoring, reviewing, investigating, and reporting the events generated by the SIEM.
- Follow-ups on incident investigation requests
- handling security incidents/alerts, investigate the root cause in collaboration with other Security teams, establish corrective controls and minimize the impact
- Research and incorporate the latest international trends in security operation management
- Documentation of SOC output (Analyzing Vulnerability Assessment reports, weekly/Quarterly SOC reports, and incident response reports)
- Ability to manage vulnerability and/or risk remediation
- Create queries, dashboards, and visualizations to detect incident/threats and monitor of SIEM systems.
- Configure Security application like: Antivirus, EDR and DLP
- Working hours: Ability to work in circular shifts as 7/24
Requirements
- Nature and length of previous experience: 2+ years’ Work Experience in Information Security
- University Qualifications: BSc or MSc in computer engineering or Information Technology
- Information security related certifications like Certified Ethical Hacker (CEH), SANS SEC 503, 504 are plus.
- Information Security certifications are considered as a plus
Specialist knowledge:
- understanding of information security concepts, standards and practices
- Mastering basic security concepts to a minimum level of Security + and CCNA Cyber FND
- Familiar with different attacks on different layers of standard TCP / IP model
- Familiar with Log structure
- Fluent in TCP / IP concepts (Minimum: Network + level)
- Knowledge of Networking, Operation Systems, Programming and Scripting.
- Each below criteria is a plus
- Familiarity with SIEM and Network Monitoring Tools
- Familiarity with MITRE ATT&CK, D3FEND and Shield
- Familiarity with Incident handling
- Understanding Anatomy Attack in any phase of Detect and Protect
Soft Skills and Personality traits:
- Excellent written and verbal communication skills
- Ability to clearly communicate and present technical topics
- High skill in solving problems and providing optimal solutions
- Strong organizational skill and be able to attend to and prioritize projects
- Excellent analytical and time management skills
- Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in
high demand environment
- Ability to perform multiple tasks (multi-Tasking)
- Self-study capability and morality.
- Ability to work under pressure and stressful scenarios
- Teamwork skills
- Discipline and professional ethics
- Ability to clearly communicate and present technical topics
- High skill in solving problems and providing optimal solutions
- Strong organizational skill and be able to attend to and prioritize projects
- Excellent analytical and time management skills
- Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in
high demand environment
- Ability to perform multiple tasks (multi-Tasking)
- Self-study capability and morality.
- Ability to work under pressure and stressful scenarios
- Teamwork skills
- Discipline and professional ethics
مهارتهای مورد نیاز
- soc
- tcp / ip
- اسکریپت نویسی
حداقل سابقه کار
- کمتر از سه سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- معافیت دائم پایان خدمت