Security Operations Center Senior Analyst

Detalles de la oferta

**Job Summary**:
The role will monitor cybersecurity consoles, dashboards, and/or feeds and perform alert triage and analysis, initial incident scoping and documentation, ticket escalation, attack disruptions for pre-defined/approved conditions; and, initial incident response management, detailed scoping, and incident coordination among various internal and external teams.

**Key Responsibilities**:

- Monitor SOC mailbox, IT ticketing system, hotline, threat intelligence feeds, endpoint/data loss prevention consoles, and other security tools for alerts
- Triage alerts, conduct incident response and recovery activities
- Perform deep-dive investigations and root cause analysis
- Collect forensic artifacts on suspicious workstations and analyze with Forensic Analysis tools
- Conduct security and behavior risk identification
- Initiate the coordination of risk mitigations and escalation to client leadership
- Coordinate internal response to incidents
- Suggest changes to SOC Detection logic on various SOC technologies
- Adhere to approved SOC documentation e.g., processes and procedures
- Develop, coordinate, and implement SOC documentation
- Act as shift lead and primary point-of-contact to client SOC team
- Develop and coordinate SOC operation metrics and reports
- Draft SOC shift change reports and conduct shift-change briefings to maintain continuity of operations

**Knowledge, Skills and Experience Requirements**:

- Minimum of 5 years of professional experience in operating, managing, designing, implementing, maintaining, or supporting cybersecurity technology
- Minimum of 5 years of professional experience in SOC operations and/or incident response
- Understanding of technologies and solutions utilized in cybersecurity and networks (SIEM, SOAR, Firewalls, IAM, IDS/IPS, End Point Protection, Threat Management/Intelligence.)
- Strong understanding of intrusion detection concepts and information security defense
- Knowledge of current hacking techniques, vulnerability disclosures, data breach incidents, and security analysis techniques
- Experience in SOC documentation development
- Understanding of Incident Response analysis skills e.g., SURGE Collect
- Forensic artifact examination with Volatility
- Proven experience with multiple security event detection platforms
- Thorough understanding of TCP/IP
- Understand basic IDS / IPS rules to identify and/or prevent malicious activity

**Soft Skills**:

- Full professional proficiency in English,, especially in technical writing and verbal
- Demonstrated integrity in a professional environment
- Completed technical higher education in the field of computer science or related field
- Possession of certificates or education related to cybersecurity, information technology, or engineering
- Possession of cybersecurity certifications e.g., CISSP, GCIH, GMON, GSOC

**What working at EY offers**:

- Skills development in the cybersecurity domain
- Executive communication skills
- Opportunities for professional development at EY
- Certifications via external and internal training
- Conference attendance


Salario Nominal: A convenir

Fuente: Whatjobs_Ppc

Requisitos

Technical Manager - Costa Rica

**Key Responsibilities**: - Continuously innovating the Thunderbird platform/service - Lead a team of developers in the design, development, and maintenance...


World Business Lenders, Llc - San José

Publicado a month ago

Data Operations Analyst - Intermediate

You will be in charge of creating and updating EFXIDs. This will require being very thorough in internet searches and detailed in entering data into the syst...


Equifax - San José

Publicado a month ago

Front End Engineer (Ionic / Angular)

Hello! Are you ready to Work from Home and transform your career? If you have great consulting skills and know you can consistently delight our customers and...


Modus Create - San José

Publicado a month ago

Sre Engineer

At Encora we are looking for a great talent like you to join our team as the next **_SRE _**_Engineer (6301)_** Would you like to join our great team of eng...


Encora - San José

Publicado a month ago

Built at: 2024-12-26T23:23:15.419Z