Education Qualifications, Accreditation, Training :
Bachelor's degree in Information Technology or related field
Minimum 5-10 years of experience in the Cyber security field
Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.)
Required Skillsets
Provide analysis and trending of security log data from many heterogeneous IT security devices
Provide Incident Response (IR) support when analysis confirms actionable incident
Provide threat and vulnerability analysis as well as security advisory services
Analyze and respond to previously undisclosed software and hardware vulnerabilities
Investigate, document, and report on information security issues and emerging trends
Integrate and share information with other analysts and other teams
Other tasks and responsibilities as assigned
Assist Entry-Level SOC analysts to help them build stronger skills
This position will float to cover various work schedules and perform monitoring duties when there are shift staffing shortages
Assist Team Leads with reporting, projects, administrative work as needed
Review Level 1 SOC Analyst ticket queue, review tickets, closure or reassignment as needed
Create / review / modify documentation as needed, to include any process or procedure and thus ensure it’s up to date and standard
Change management calendar updates / closures
Monthly SOC Reports
Answer SOC incoming phone calls and triaging phone calls that are not related to monitoring
Create daily Shift Handoff notes and summary and send to all shifts
Other duties as assigned by Team Leads and / or Operations Manager
Recent experience in a cyber-security client-facing position (Consulting, Integration, Solution Management, Security Architect) would be a plus
Reviewing security policies, plans, and procedures; assessing network monitoring capabilities; analyzing system logs, security events, and packet captures to identify security threats;
and providing recommendations to comply with an applicable cybersecurity framework
Extensive experience in cybersecurity-related activities and controls
A broad range of experience in cyber security technology and vendors
Understanding of general cybersecurity frameworks (ISO IEC 27001 / 27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53)
Excellent spoken and written communication to explain your methods to a technical and non-technical audience
Good knowledge of OWASP and Secure SDLC standards
Good knowledge of encryption technologies & MiTM attacks
Good understanding of the MITRE ATT&CK framework and how to leverage it.
Attention to detail, to be able to plan and execute tests while considering client requirements
Teamwork skills, to support colleagues and share techniques
Exceptional analytical and problem-solving skills and the persistence to apply different techniques to get the job done
Business skills to understand the implications of any weaknesses you find
Commitment to continuously update your technical knowledge base
Vertical : Technology
Technology
