Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
- Responsible for reviewing system logs and incidents on a daily basis and handling the investigation to avoid potential incidents.
- Participate in the day to day Monitor and analyze security events and alerts from multiple sources,including security information and event management (SIEM) software, network and host-based intrusion detection systems,firewall logs, and system logs (Windows and Unix),and databases
- Implement and monitor threats and vulnerability management processes,inclusive of vulnerability scanning and remediation efforts, monitoring of CVE and vendor notifications,etc.
- Conduct regular audits using tools such as vulnerability scanners, SIEM and Anti virus.
- Audit all directory services and privileged accounts on a regular basis to avoid any improper privileges.
- Ensure that all information security policies and procedures are applied across the firm.
- Conduct in house penetration testing and code reviews of prosper applications and platform to ensure their compliance with international security standards.
- Conduct regular security assessments of internally developed applications to generate security reports to assess needs and security enhancements requirements.
- plement solutions for monitoring applications security logs, end point application whitelisting, network and host based forensic readiness, DoS/DDoS mitigations, Database access monitoring solutions, PKI Implementations etc.
- Separate true threats from false positives using network and log analysis and escalate possible intrusions and attacks
- Initiate tickets, document, and escalate to higher-level security analysts
- Serve as the technical escalation point and mentor for lower-level analysts
- Regularly communicate with IT teams to inform them of issues, help them remediate, and ensure that they continue to operate business as usual
- Perform triage of incoming issues (assess the priority, determine risk)
- Work with IT teams to deploy hardware and software monitoring systems
Job Requirements
- A bachelor’s degree in computer science, communication, or a related field.
- Minimum3-4years of hands-on SOC experience.
- Knowledge & Experience working with SIEM Solution Technologies (Administration & Analysis)Log Rhythm is preferred
- Experienced in identifying Threats & creating Security use cases
- All around Knowledge\Experience working with different security tools\technologies (Network, Application, Systems, Vulnerability Management,IT Forensics)
- Experience with Ability to analyze event logs and recognize signs of cyber intrusions/attacks
- Experience with information security risk management tools and methodologies.
- Experience with data privacy/security international regulations.
- Experience with endpoint security solutions,NGFW,WAF,EDR..etc