استخدام تحلیلگر امنیت (SOC Tier 1)
شرح موقعیت شغلی
SOC Tier 1 Security Analyst
Overview:
Join our dynamic cybersecurity team as a Tier 1 Security Analyst. In this role, you will be at the forefront of our 24x7x365 coordination center, responsible for monitoring and responding to security incidents. We invite you to apply if you're passionate about cybersecurity and thrive in a fast-paced environment.
Roles and Responsibilities:
Perform real-time monitoring of internal and information technology security equipment (IDS, IPS, HID, firewalls, SYSLOG, etc.) and systems to determine operational status and performance making use of various Security Incident and Event Management (SIEM) tools, SOAR platforms, and other related security management/console applications, such as network traffic and data analytics.
Analyze raw and processed security alert and event data to identify potential security incidents, threats, mitigations, and vulnerabilities.
Support follow-on actions, such as coordinating with other organization teams to facilitate remediation of the alert/event/incident, and close out the investigation.
Perform initial alert/event/incident triage used for investigation.
Initiate incident notification, case tracking/management, recovery actions, and report status updates.
Perform incident response analysis uncovering attack vectors involving a variety of malware, data exposure, and phishing and social engineering methods.
Coordinate process and procedure actions with team members.
Detailed Tasks: Incident Response
Support and develop reports during and after incidents, which include all actions taken to properly mitigate, recover and return operations to normal operations.
Participate in the remediation of incidents and responses that are generated from live threats against the enterprise.
Coordinate and provide technical support to enterprise-wide cyber defense technicians to resolve cyber defense incidents.
Assist in real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis, and direct system remediation) tasks to support deployable Incident Response Teams (IRTs).
Desired Skills and Qualifications:
Bachelor's degree in Computer Science, Engineering, Information Technology, Cyber Security, or 1-2 years of related field experience in Cyber/IT roles (SOC experience preferred, but not required).
Well-known IT Security Certifications would be an advantage (e.g., CompTIA Security+).
Sufficient written and oral communication skills.
Self-motivated and able to work independently.
Work Environment:
Fully on-site position.
Day Shift / Evening Shift / Night Shift with "On-call" availability (Some nights, weekends, and holidays).
مهارتهای مورد نیاز
- soc
- امنیت شبکه
- امنیت اطلاعات
حداقل سابقه کار
- سه تا شش سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- مهم نیست