Security Analyst/Security Analyst
ไฮไลท์เด่นของงาน
- Security
- SOC
- Security Consultant
รายละเอียดงาน
The Security Analyst role is part of the SOC. Candidates in this role will respond to events according to documented procedures and industry best practices. Ideal candidates should be experienced in the areas of networking, client/server technologies, and analyzing log files with the ability to identify false positive and true positive events. Candidates must have experience in Linux and Windows operating systems. Candidates in this role may also be required to follow the incident response plan. Enthusiasm and interest in Information Security must be displayed.
Job Requirements:
• Accept escalations from Monitoring and provide initial investigation of security incidents
• Application of contextual data (criticality, device grouping, existing vulnerabilities)
• Provide communication and escalation throughout the incident per the Security Incident
Management guidelines
- Communicates directly with data asset owners and business response plan owners during high severity incidents
• Provides feedback to Threat Monitoring team
• Perform analysis of log files for security incidents
• Takes an active part in the containment of incidents, even after they are escalated
Qualification
- Bachelor’s degree or above in computer engineering/Computer science
- 3-6 years work experiences preferably in an SOC environment
- Process and Procedure adherence
- Knowledge of network security zones, firewall, IDS
- Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for
- traceability back to event
- Knowledge of packet capture and analysis
- Experience with log management or security information management tools
- Ability to make information security risk determinations
- Effective verbal and written communication skills