SOC Analyst - Philippines, Pilipinas - Booth & Partners

    Booth & Partners
    Booth & Partners Philippines, Pilipinas

    Natagpuan sa: Foundit PH A2 - 1 linggo ang nakalipas

    Booth & Partners background
    Buong oras Teknolohiya/Internet
    Paglalarawan

    Job Description

    This is a remote position.

    About the Client:
    Intalock is Australia's leading provider of cyber security managed services. They pride themselves on being uniquely different, they not only deliver world class cyber security managed services, they have a wealth of experience in understanding data, the lifeblood of any organisation. As a Cyber Security industry, they think that good security is building higher walls around our companies taking a lot of time, money and resources which isn't effective or sustainable. At Intalock they take a different approach, they want to understand your data, it's sensitivity, how you use, store and share it, actually they want to understand everything about it. By doing this they help their client by building and managing innovative solutions to reduce their risk by taking a strategic data centric approach to cyber security.

    Job Summary:

    The successful candidate will be part of a team of skilled cyber security analysts who will deliver specialist Cyber Security capability to contracted customers. This consists of several security logging, security monitoring and security operations services, designed to detect external and internal cyberattacks on the customers IT and network infrastructure. The Level 3 SOC Analyst is a senior member of the SOC team and is required to supervise, quality control and mentor junior analysts. They should be proficient in security analyst tasks and have a deep understanding of intrusion activities, incident response techniques, tools and procedures.

    Responsibilities:
    • Deliver security-based operational support for Managed Service customers, in line with documented process and timeframe.
    • Research on Threat or Security related news that could potentially impact a client.
    • Proactive threat hunting in large volumes of data depending on IOCs or TTPs, threat profiling
    • and validation.
    • Receives escalations from customer or management related to Incident Response which may lead to deeper analysis. Tasks will include creation of a timeline, provide tactical and strategic recommendations, prepare the post incident report and after-action review.
    • Handles communication to a mix of technical and non-technical client audience.
    • Compute and then create scan schedule for vulnerability management, coordinated remediation including ad-hoc requests.
    • Creates custom reports based on the data gathered on a weekly/monthly basis.
    • Develop use case and/or operational playbooks.
    • Document encountered processes for the SOC use.
    • Providing analytical and technical support to solve a wide range of complex security issues
    • Raising support tickets and taking ownership through to completion
    • Participate in open communication between team members

    Requirements

    Technical Knowledge:
    • Degree in computer science or equivalent.
    • 3-5 years of Cyber Security experience.
    • With SOC / CIRT / Vulnerability Management / Threat Intel / Security Administration experience.
    • Thorough knowledge of security architecture, system administration and networking (including )
    • Good understanding of the cyber security landscape and security concepts.
    • Understanding the different occurrences of incidents, different scenarios, and situations.
    • Knowledge in using at least 2 SIEMs is a plus.
    • Preferably has Security related certification.

    Skills and Attitudes:
    • Willing to work in 24 x 7 environment, including day and night shifts.
    • Commitment to continual education, personal development, and willingness to learn.
    • Strong troubleshooting skills and ability to manage issues through to resolution.
    • Maintains strong attention to detail in high-pressure situations.
    • Ability to explain in written and spoken English.
    • Strong ambition and ability to develop and expand cyber security services and product support.

    Others:

    Benefits

    WHAT WE OFFER:

    Great Place to Work-Certified Company
    Premium HMO
    Holistic employee experience
    Rewards and incentives
    Monthly engagement activities
    Career advancement opportunities
    Paid referral program
    Permanent work from home 2 HMO dependents from day 1