We are seeking a SOC L1 Engineer who will be part of our growing Global Operations & Delivery team, which monitors, investigates, and resolves security incidents, violations, and suspicious activities. Our global Operations group takes innovative approaches and uses the most cutting-edge technologies to transform the operations of our customers and secure the security landscape.
Level 1 SOC Analyst:
Job Description
· Resolve, escalate, report, and raise recommendations for resolving and remediating security incidents
· Handle the advanced monitoring of system logs, SIEM tools, and network traffic for unusual or suspicious activity
· Set up SIEM solutions and troubleshoot connectivity issues
· Investigate and resolve security violations by providing post-mortem analysis to illuminate issues and possible solutions
· Collate security incident and event data to produce monthly exception and management reports
· Report unresolved network security exposure, misuse of resources, or noncompliance situations using defined escalation processes
· Assist and train team members in the use of security tools, the preparation of security reports, and the resolution of security issues
· Develop and maintain documentation for security systems and procedures
· Recommend, schedule, and apply fixes, security patches, and any other measures required, in the event of a security breach
Experience & Qualifications Required
· Minimum 1 years of experience as a Analyst working as part of a SOC team
· Experience with SIEM vendors such as QRadar, ArcSight, RSA, and LogRhythm, Splunk.
· Experience in incident response, and in writing procedures runbooks and playbooks
· Ability to work with customer’s IT and security teams
SOC Analyst, Senior Security Analyst
