Soc Analyst

Job description

Must-Have

• Monitor multiple security technologies such as SIEM, Antivirus, Vulnerability management, Web Proxy, Security Patch management.
• Tune/Create SIEM correlation rules.
• Perform in-depth incident and event analysis.
• Respond and handle the security incidents.
• Agree and align on reporting and monitoring requirements with business stakeholders.
• Conduct research on emerging security threats.
• Modify Standard Operating Procedures(SOPs) and training documentation.
• Coach junior team members.
• Good Knowledge on SIEM tools like QROC, Arcsight, SPLUNK or Sentinel.
• Knowledge and experience with PCs, LAN topologies, routers, hubs, and terminal servers
• Knowledge of security applications such as IDS, Security Event Management and anomaly detection tools.
• Knowledge of VPN technology.
• Knowledge of investigation tools like FTK imager, memory dump, threat analysis tools.
• Ability to read and interpret network diagrams.
• Oversight of facilitates for other offices in the UK and provide support and guidance where required.
• Ability to translate event analysis findings into new monitoring proposals.
• Remain flexible with 24/7 shift and task assignments.