• Information Security • SOC • SIEM
Responsibilities• Responsible for working in a 24x7 Security Operation Center (SOC) environment • Provide analysis and trending of security log data from a large number of heterogeneous security devices. • Provide Incident Response (IR) support when analysis confirms actionable incident. • Provide threat and vulnerability analysis as well as security advisory services • Analyze and respond to previously undisclosed software and hardware vulnerabilities • Investigate, document, and report on information security issues and emerging trends. • The analyst performs monitoring, research, assessment and analysis on Intrusion Detection and Prevention tools as well as Anomaly Detection systems, Firewalls, Antivirus systems, proxy devices (ArcSight, Splunk, SourceFire, Palo Alto Networks, etc) which requires demonstrable security incident response experience • Follow pre-defined actions to handle BAU and High severity issues including escalating to other support groups Execute daily Adhoc tasks or lead small projects as needed • Create and maintain operational reports for Key Performance Indicators and weekly and Monthly Metrics • Perform initial risk assessment on new threats and vulnerabilities, perform assessment phase of Vulnerability and Threat Management process • Perform assessment as well as troubleshooting and help isolate issues with IDS/IPS sensors, Antivirus servers, Vulnerability scanners • Participate in daily and ad-hoc conference calls as well as compliance and controls, self-assessment processes and documentation related tasks on experience with Information Security Tools alike SIEM (Splunk, Arcsight Qradar) & NIDPS (Sourcefire) Tools. FireEye HX, NX, CMS End point tools.
Requirements• Hands-on experience with Information Security Tools alike SIEM (Splunk, Arcsight Qradar) • NIDPS (Sourcefire) Tools. FireEye HX, NX, CMS End point tools.
The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.