Ariento ยท 3 days ago
Senior SOC Engineer
Wonder how qualified you are to the job?
Insider Connection @Ariento
Responsibilities
Performs log analysis. Writes regex queries in SIEM.
Performs deep-dive incident analysis by correlating data from various sources.
Determines if a critical system or data set has been impacted.
Advises on remediation. Builds, maintains, and updates runbooks.
Provides support for new analytic methods for detecting threats.
Supports tactical and technical activities on the network and assists with all technical aspects of incident detection, assessment, containment, eradication, and recovery including incident triage, establishing Containment, Eradication, and Recovery plans of action and change activities.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Strong experience with SIEM tools such as IBM Qradar, Splunk, LogRhythm, Microsoft Sentinel, and others
Knowledge on correlation rules and metadata
Understanding on the incident management process
Experience on system hardening, vulnerability assessment and penetration testing
Working knowledge on the IT components such as Firewalls, IPS/IDS, UTM, Load Balancers, Routers, Switches, Antivirus, Windows Servers and Linux Servers
Knowledge on content filtering, URL filtering, authentication techniques
Knowledge on various threats, attacks and vulnerabilities
Expertise on TCP/IP network traffic and event log analysis
University degree in Computer Science, Cybersecurity, Software Engineering, or a related field
Proven experience with 5+ years as a SOC Analyst/Engineer
Strong command on verbal and written English language
Demonstrate both technical acumen and critical thinking abilities
Strong interpersonal and presentation skills
Certification in any of the SIEM platforms
Local to Franklin, TN or able to commute