We are seeking a skilled and experienced SOC Analyst Tier 2 to join our dynamic cybersecurity team. As a Tier 2 Analyst, you will play a pivotal role in our Security Operations Center (SOC), contributing to detecting, analyzing, and responding to security incidents. If you have a passion for cybersecurity and are ready to take on challenging responsibilities, we encourage you to apply.
Responsibilities:
Perform investigations, threat hunting and use cases as needed
Act as an escalation point for Tier 1
Communicate with customers regarding security related incidents
Assist in threat signature implementation and tuning
Define and mature ‘playbooks’ for response to cyber threats
Provide teaching/mentoring to junior analyst team members
Participate and lead SOC training efforts
Additional responsibilities and tasks assigned by SOC management
Skills:
Willingness to learn, adapt, and innovate
Critical thinking and analytical skills
Excellent written and oral communications skills
Great interpersonal and teamwork skills
Proficient in Incident Management and Response.
Experience in security device management and SIEM.
Knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
Experience in threat management.
Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix.
Knowledge of applications, databases, middle ware to address security threats against the same.
Proficient in preparation of reports, dashboards and documentation.
Requirements:
4 years of experience on one of the following team(s): Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
Bachelors’ degree in Computer Science, Information Technology or related technical field.
Experience with Security Information and Event Management (SIEM) Systems, Anti-Virus, Intrusion Detection Systems, Firewalls, Active Directory, and large Enterprise or Cloud environments.
Experience with Incident Response, analysis of network traffic, log analysis, ability to prioritize and differentiate between potential intrusion attempts and false alarms, managing and tracking investigations to resolution.
Familiarity with one of the following; NIST Incident Response Lifecycle, Cyber Kill Chain, Adversarial Tactics, Techniques & Common Knowledge (ATT&CK).
· XDR/EDR experience
· Deep packet and log analysis
· Some forensic and malware analysis experience
· Cyber threat and intelligence gathering and analysis
Work Location:
· Fully On-site
Working Hours:
Day Shift / Evening Shift
· "On-call" availability (Some nights, weekends, and holidays)
معرفی شرکت
شرکت مهندسین مشاور تجارت (سهامی خاص) به عنوان یکی از شرکتهای زیرمجموعه بانک تجارت در سال ۱۳۶۴ ثبت گردید. در مهر ماه سال ۱۳۹۷ ، با توجه به تغییر حوزه کسب و کار شرکت پیشنهاد تغییر نام شرکت هم راستا با حوزه فعالیت آن در تاریخ ۱۱ / ۱۰ / ۹۷ نام شرکت رسماً از مهندسین مشاور تجارت به ” زیرساخت فنآوری تجارت ایرانیان ( زفتا ) ” تغییر یافت. شرکت در حال حاضر در سراسر کشور دارای شعبه می باشد.
اهداف این شرکت با تکیه بر خطوط ابلاغی و تمرکز بر پشتیبانی تجهیزات و شبکه های ارتباطی بانک، شرکتهای وابسته به آن و سایر متقاضیان تدوین گردیده است. لیکن تا پیش از سال ۹۶ بیشتر در حوزه های پشتیبانی و تعمیر و نگهداری نقش واسطه ای ایفا شده و فعالیت های مربوط به این حوزه در مناطق مختلف بر عهده پیمانکاران دست دوم بوده است،که به جهت افزایش کمی و کیفی خدمات قابل ارائه، مدیریت هزینه ها، افزایش بهره وری، چابک سازی، کاهش حاشیه های کاری و نظارت دقیق ناگزیر نیازمند تغییر در زیرساخت های خود در بخش پشتیبانی گردید.