Job Description
Our Culture:
At STS we are proud of our culture and how it drives everything we do. We are looking for individuals who share our values and want to be part of a unique and engaging culture that revolves around collaboration and innovation. If you are looking for a role where you can drive engagement and excellence across teams through commitment and collaboration, and are someone who is customer-centric and appreciates an organization with uncompromised integrity that focuses on employee engagement then read on to learn more about how you can become part of the STS family.
Our Code of Conduct
At STS we strictly adhere to our code of conduct, which is there to serve as a moral compass, offering a framework for responsible behaviours and enabling ethical choices that cultivate positive relationships and a better future. It also outlines policies, standards, and procedures for our global operations, promoting integrity and ethical excellence across the countries we engage with.
Every year, all employees are required to review, comprehend, confirm, and adhere to the code of conduct. Additionally, all newly hired employees are subject to the same as part of their onboarding process.
Duties and Responsibilities:
- Building, running and managing the day-to-day operations of the security operations center, investigate incidents and lead response efforts as applicable and when needed.
- Maintain engineering and security documentation, assist customers to fully optimize the SIEM system capabilities the audit and logging features of the event log sources.
- Creation of technically detailed reports on the status of the SIEM to include metrics on items such as number of logging sources.
- Working alongside the Automation Unit team for configuring, maintaining, tuning and enhancing the SIEM platform.
- Responsible for the investigation – log and network forensics to identify leads.
- Support security engineering requirements for projects, transitions, and transformations
- Design and implement solutions to address business problems in various industry verticals.
- Experience with implementing, integrating with different customer assets and administering Microsoft Sentinel.
- Threat Hunter “responsible for participating in threat actor-based investigations, creating new detection methodologies, and providing expert support to incident response and monitoring functions”.
- Configure current and new cyber security solutions for clients, based on team leader requests.
- Assist in the testing and evaluation of new security technologies.
- Assist in documenting the operation for the configured solution
- Participating in on-call rotation along with other team members.
- Configure current and new cyber security solutions for clients, based on team leader requests.
- Assist in the testing and evaluation of new security technologies.
- Assist in documenting the operation for configured solution.
- Provide tool operations and maintenance support, Tier 3 customer support, and act as the subject matter expert.
- Monitor computer networks for security issues.
- Investigate security breaches and other cybersecurity incidents.
- Document security breaches and assess the damage they cause.
- Work with the offensive security team to perform tests and uncover network vulnerabilities.
- Prioritize alerts and issues and perform triage to confirm security incidents
- Performing analysis on true positive alerts to determine root cause and impact