Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Security Specialist - SOC Analyst
Eingestellt von ComTech Europe Limited
Projektbeschreibung
Security Specialist - SOC Analyst
"Security Monitoring & Investigation Real Time eyes on glass Monitoring Escalate suspicious activities and anomalies Work assigned ticket queue Review alerts from QRadar SIEM Coordinate with Response team to accept feedback on previous escalations Provide feedback to SIEM Admin on tuning and config Hunter Analysis - Response (OPS) Accept escalations from Monitoring & Investigation Provide feedback to Monitoring & Investigation Escalate events to Incident Response team (CSIRT) when needed Coordinate with IT Admins to develop needed changes (patches, configs, etc.) "
Skills required:
-SOC Analyst/SIEM (pref Qradar)/Incident Handling & Response
-Security Monitoring & Investigation Real Time eyes on glass Monitoring.
-Escalate suspicious activities and anomalies.
-Work assigned ticket queue Review alerts from QRadar SIEM.
-Coordinate with Response team to accept feedback on previous escalations.
-Provide feedback to SIEM Admin on tuning and config Hunter Analysis Response (OPS)
-Accept escalations from Monitoring & Investigation Provide feedback to Monitoring & Investigation.
-Escalate events to Incident Response team (CSIRT) when needed.
-Coordinate with IT Admins to develop needed changes (patches, configs, etc.)
Requirements:
24/7 shift model: Each shift is 10 hours that makes it 4 days on-site and 3 days off-site.
Shifts are set as follows:
06.00 - 16.00
14.00 - 00.00
22.00 - 08.00
Required language: English
"Security Monitoring & Investigation Real Time eyes on glass Monitoring Escalate suspicious activities and anomalies Work assigned ticket queue Review alerts from QRadar SIEM Coordinate with Response team to accept feedback on previous escalations Provide feedback to SIEM Admin on tuning and config Hunter Analysis - Response (OPS) Accept escalations from Monitoring & Investigation Provide feedback to Monitoring & Investigation Escalate events to Incident Response team (CSIRT) when needed Coordinate with IT Admins to develop needed changes (patches, configs, etc.) "
Skills required:
-SOC Analyst/SIEM (pref Qradar)/Incident Handling & Response
-Security Monitoring & Investigation Real Time eyes on glass Monitoring.
-Escalate suspicious activities and anomalies.
-Work assigned ticket queue Review alerts from QRadar SIEM.
-Coordinate with Response team to accept feedback on previous escalations.
-Provide feedback to SIEM Admin on tuning and config Hunter Analysis Response (OPS)
-Accept escalations from Monitoring & Investigation Provide feedback to Monitoring & Investigation.
-Escalate events to Incident Response team (CSIRT) when needed.
-Coordinate with IT Admins to develop needed changes (patches, configs, etc.)
Requirements:
24/7 shift model: Each shift is 10 hours that makes it 4 days on-site and 3 days off-site.
Shifts are set as follows:
06.00 - 16.00
14.00 - 00.00
22.00 - 08.00
Required language: English
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
Sonstiges