Job Title: SOC Analyst
Location: REMOTE
Duration: Full time
Must have : Power shell and Python knowledge.
Hands on windows and Linux
Experience : 4+ years as SOC analyst/Cyber security analyst - Level 2
Job Description
- Monitor security events and identify potential incidents across the organization environments (Corporate, Production, Development)
- Review alerts, assess risks and prioritize incident investigation efforts
- Develop security tools and integrations to automate security operation processes
- Interface with technical and business units to identify the source of the incidents and the appropriate resolution.
- Identify “lessons learned” together with other organizational teams
- Investigate security incidents. Produce accurate and timely reports on Information Security incidents so that mitigation measures can be effectively decided and implemented
- Assist technical teams in gathering incident evidence and remediating issues
- Operate and Tune security consoles configuration
- Conduct forensic analysis as required during the investigation of incidents
- Support the fraud investigation teams on their incident investigations
Required Skills
- Automation skills: scripting (again, Scripting languages are agnostic but should definitely know POWERSHELL AND PYTHON), SOAR capabilities – SOAR is a tool from Splunk that is used to help Triage certain Security alerts so it can help diagnose what the “Root Cause” of the alert might be. It can also help eliminate a lot searching throughout the network to assess security issues.
- At least two years’ experience in a similar Information Security position
- Experience developing security tools and open source projects
- Attention to detail and great problem solving skills
- Outstanding knowledge of the technical foundations behind networking, operating systems and applications
- TCP/IP
- Linux
- Windows
- Web technologies
- Other networking protocols
- Good understanding of Information Security processes and theory
- Vulnerability research and exploitation skills
- Good communication skills and customer-facing experience
- Experience in the following areas:
- Vulnerability management
- Risk management
- Traffic and packet analysis
Required Education
- Bachelor’s Degree in a finance-related field
Required Years of Experience
- 2 years of relevant work experience in information security
Desired Skills
- Security Certification (GIAC, OSCP, etc.) or similar qualification
- Experience configuring and maintaining SIEM tools
- Experience in creation of log correlation and incident detection rules
- Experience managing security consoles and log correlation solutions
- Online Gaming security experience
- Experience in forensic analysis
- Experience in security assessments
- Experience securing Microsoft protocols
- Regulatory and industry standards work: ISO27001, PCI-DSS, etc.
