Job Description
Description
We are seeking a highly skilled Security Operation Center (SOC) Analyst L3. This role involves managing and responding to security incidents, conducting thorough analysis, and implementing effective security measures. The ideal candidate will possess strong analytical skills, extensive experience in incident handling, digital forensics, and a comprehensive understanding of network security.
Responsibilities:
- Monitor and analyze security alerts and potential incidents using various security tools and platforms.
- Conduct in-depth investigations of security incidents, identifying root causes, and providing detailed incident reports.
- Develop and execute containment strategies in response to security incidents to mitigate risks and protect organizational assets.
- Collaborate with cross-functional teams to address vulnerabilities and enhance overall security posture.
- Analyze network traffic and packet captures to detect anomalies and malicious activities.
- Maintain and configure firewalls, intrusion detection systems (IDS), and other security appliances in compliance with best practices.
- Utilize log search tools effectively, including expertise in regular expression parsing, to extract relevant information for incident investigations.
- Operate and maintain security assessment tools such as NMAP, Nessus, Metasploit, and Netcat to identify and remediate security vulnerabilities.
- Document and continuously improve incident handling procedures and workflows.
- Provide mentorship and support to junior SOC analysts, fostering a culture of learning and development within the team.
Skills
Requirements
5 years of experience in a Security Operations Center (SOC) role.
Strong knowledge of security tools
Experience in digital forensics and incident response, including handling and investigating security incidents.
Knowledge of network protocols and network security concepts.