SOC Monitoring Specialist - Riyadh, المملكة العربية السعودية - Tools&solutions
وصف
Soc Monitoring:
Tools & Solutions** is an A-to-Z Business Solutions, initiating win-win business solutions for over 500 companies, including governmental organizations, for the last ten years.
Currently, we are on the lookout for a
SOC Monitoring in Saudi Arabia that can perform at the top of their game to join us and contribute to our success.
Job Description:
We are searching for a SOC Engineer who will be responsible for monitoring, reporting, and escalating events to our SOC Analysts.
The primary function of this position is to monitor the analytics tools and perform alert management and initial incident qualification.
Responsibilities:
- Acknowledge, analyse and validate incidents triggered from correlated events through SIEM solution
- Collection of necessary logs that could help in the incident containment and security investigation
- Escalate validated and confirmed incidents to SOC Analyst
- Undertake first stages of false positive and false negative analysis
- Open incidents in SecurityHQ (ITSM Platform) to report the alarms triggered or threats detected. Analyst should properly include for each incident on SecurityHQ all details related to the logs, alarms and other indicators identified in accordance with the intervention protocol of each client and the SLA.
- Track and update incidents and requests based on client's updates and analysis results
- Properly log client requests and change requests in SecurityHQ
- Report infrastructure issues to the Si support team.
- Report false positive alarms from Carbon Black and LogRhythm to L2 SOC analysts
- Generate weekly reports from LogRhythm platform and send it to L2 SOC analysts for review
- Other duties related to the position
Requirements:
Essential Skills:
- Knowledge and handson experience in management of IDS/IPS, Firewall, VPN, and other security products
- Experience in Security Information Event Management (SIEM) tools, creation of basic corelation rules, and administration of SIEM
- Should have expertise on TCP/IP network traffic and event log analysis
- Knowledge and handson experience in LogRhythm, QRadar, Arcsight, Novell Sentinel or any other SIEM tool
- Knowledge of ITIL disciplines such as Incident, Problem and Change Management
Additional Desired Skills:
- Strong interpersonal and presentation skills.
- Ability to work with mínimal levels of supervision or oversight.
- Adherence to security policies.
Education Requirements & Experience:
- Bachelors inComputer Science/IT/Electronics Engineering, M.C.A. or equivalent University degree.
- Minimum of 1 year of experience in the IT security industry, preferably working in a SOC/NOC environment
Certifications:
CCNA, CCSP, CEH
Benefits
Application
Closing Date:20th Jan 2023
المزيد من الوظائف من Tools&solutions
-
Senior Test Data
المملكة العربية السعودية - منذ أسبوع
-
Technical Pre-sales Lead
Riyadh, المملكة العربية السعودية - منذ أسبوع
-
Delivery Manager
Riyadh, المملكة العربية السعودية - منذ أسبوع
-
Data Analyst
Riyadh, المملكة العربية السعودية - منذ يومين
-
Chatbot Moderator
Riyadh, المملكة العربية السعودية - منذ 6 أيام
-
Sharepoint Specialist
Riyadh, المملكة العربية السعودية - منذ أسبوع