Security Managed Services Senior Analyst
工作描述
Project Role: Senior Security Analyst
Project Role Description
Security threat analysis and investigation skills, detection engineering, Training and Documentation
Key Responsibilities
• Work as part of a global security analysis team that works 24/7 on rotational shift
• Handling tunings, customer requests, escalations, reporting, training, etc.
• Life cycle management of the SIEM (Onboarding, Break-fix, Patching, Live update etc)
• Adhering to SOPs and notify customers on log flow/log format issues
• Incident analysis, deep dive threat hunting and investigation and root cause analysis
• Creation of detection rules, testing and implementation
• Evaluation of client detection requirements, gap analysis, fine tuning
• Playbook creation for automation and integration with SOAR requirements
• Document best practices and writing KB articles
• Identify opportunities for process improvements
职位要求
Must have skills
• Networking Fundamentals, security threat analysis and EDR investigation skills, rule writing and playbook creation
Good to have skills
• Network Security (Firewall, IDS/IPS, Endpoint AV, EDR etc.), scripting
Technical Experience
• Experience in SOC Operations with customer-facing responsibilities
• Deep understanding on cyber security fundamentals, security devices, network defense concepts and threat landscape
• Hands-on experience in SIEM, SOAR, EDR and threat hunting tools
• Hands-on experience in creation of detection rules, playbooks for automation and response actions
• Desirable knowledge in any scripting language and EDR products
• Strong threat hunting and investigation skills and root cause analysis
• Knowledge on networking, Linux and security concepts
• Knowledge with security devices such as Firewall, DS/IPS, EDR, UTM, Proxy, Cloud solutions, etc.
• Knowledge on log collection mechanisms such as Syslog, Log file, DB & API
• Preferable certifications – GCIA, GCFA
Professional Attributes
• Passion for cyber security, learning, and knowledge sharing
• Strong Verbal & written communication skills
• Proven customer service skills, problem solving and interpersonal skills
• Ability to handle high pressure situations
• Consistently exhibit high levels of teamwork
Educational Qualification
• Bachelor’s Degree in computer science, prior experience in information security or SOC operations
Additional Information
• Following certifications is added advantage: GCIA, GCFA, CISSP
