| Security SOC Analyst !! Remote at Remote, Remote, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=201196&uid= From: Abhishek, Source InfoTech Inc. [email protected] Reply to: [email protected] Hi , Please review the requirement if you are interested then reply back with your details. FYIThis is not my direct client requirement. There is layer(either prime vendor or implementation partner) between me and End client. -------- JOB DESCRIPTION : Position: Security SOC Analyst Location : Remote Duration : 6 months Visa : USC ,GC only MOI : phone then Skype Minimum Requirements: Must have at least 3 - 4 years of security incident investigation experience providing L2/L3 support. SOC experience/hunt is a strong plus. They must be proficient in Networking, working knowledge of networking concepts such as common TCP/UDP ports, TCP flows, LDAP, authentication, DNS components flow and analysis, HTTP response codes and be able to use this knowledge in security investigations. OS Full-Service Management/Troubleshooting and have performed Device Level/SIEM Log Analysis. Recognize threats such as but not limited to DDOS, APT lifecycle (including Data exfiltration attempts). Development of Data Dictionaries for log sources to confirm which fields and values are needed or useful for Security Monitoring o Review of available logs to confirm there are adequate quantities and content to usefully provide Security Monitoring o Triage SIEM alerts to determine False Positive, Incident, or Technology Misconfiguration o Perform research at the request of Incident Response teams Recognize IoCs on networks and host machines. Have basic desktop support skills in Windows and Unix environments (ex. password and log locations) Configuring and reading packet captures such as Wireshark. Provide technical and thought leadership within SOC by: o Teaching other SOC Analysts about both traditional and unconventional ways to detect, analyze, and mitigate security incidents and other anomalies o Regularly recommending new SOC practices and approaches to address program improvement Perform case management activities to ensure successful BAU Security Monitoring Operations, including: o Documenting case activities in the system of record o Documenting current case notes sufficient for effective shift handover, as well as reviewing current status via phone call or in person o Engaging in all forms of communications (e.g. phone calls, instant-messaging, web page updates) to ensure cases are efficiently investigated by all approved parties, regardless of what company, department, or team they are a member of Familiarity with handling of digital evidence (chain of command) Author Standard Operating Procedures (SOPs), such as: o Incident detection "use case " needs, logic, and implementation methods o "use case " alert triage workflows o Training documentation o Recommending, then implementing approved program improvements NOTE: I may miss your call, but I never miss to reply to you. Email is the best way to reach me. Thanks, Abhishek IT Recruiter Source InfoTech Inc., ( Phone- 609-733-5102 ext- 165 Email: [email protected] Keywords: information technology http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=201196&uid= |
| [email protected] View All |
| 05:36 PM 11-Dec-22 |