Senior Information Security Analyst (SOC L3)
Eurofins
Heredia, CR
hace 1 día

Job Description

The person working in L3 SOC team receives incidents escalated from L2 SOC, gets to manage most complex findings and work towards remediation of the incidents found.

This person will be part of the Security Operations Center team.

He / she continuously operates the Security Incident process, driving the resolution of identified issues, as part of the team, bringing the necessary experience and expertise above the existing L2 SOC level.

The role is regular working hours and depending on specific team schedule set) but has a required on-call component (covering out-of-work hours and weekends).

Qualifications

Required Professional Expertise :

  • Minimum of bachelor’s degree or equivalent combination of education and experience.
  • MBA in IT or Cybersecurity preferred.
  • Must have understanding of cybersecurity incident discovery and event management, network forensics, IPS / IDS, firewalls, content filtering technology, DLP, configuration management and monitoring, endpoint protection, database security, and log collection and analysis.
  • Strong working knowledge of different attack vectors and attack types.
  • Experience and keen understanding of cybersecurity tools, including SIEM, IDS / IPS, antivirus and endpoint detection & response solutions.
  • Experience with leading security incident response.
  • Involvement in threat intelligence and cybersecurity communities.
  • Able to multitask and give equal and / or required attention to a variety of functions.
  • Ability to work independently and take ownership of projects and initiatives.
  • Excellent written and verbal communication skills required. Must be able to communicate technical details clearly.
  • Experience in developing and maintaining Play / Run-Books and / or Standard Operating Procedures in a SOC environment.
  • Strong troubleshooting, reasoning, and analytical problem-solving skills.
  • Ability to communicate technical details effectively in writing and verbally to junior IT personnel and management.
  • Technical Skills :

  • Must have cybersecurity incident discovery and event management, network forensics, IPS / IDS, firewalls, content filtering technology, DLP, configuration management and monitoring, endpoint protection, database security, and log collection and analysis understanding.
  • Strong working knowledge of security-relevant data, including network protocols, ports and common services, such as TCP / IP network protocols and application layer protocols HTTP / S, DNS, FTP, SMTP, Active Directory etc.).
  • Experience and keen understanding of cybersecurity tools, including SIEM, IDS / IPS, antivirus and endpoint detection & response solutions.
  • Desired :

  • Able to multitask and give equal and / or required attention to a variety of functions while under pressure.
  • Ability to work independently and take ownership of projects and initiatives.
  • Excellent written and verbal communication skills required. Must be able to communicate technical details clearly.
  • Strong troubleshooting, reasoning, and analytical problem-solving skills.
  • Ability to communicate technical details effectively in writing and verbally to junior IT personnel and management.
  • Willingness to work overtime and adjust to reasonable demands from management in case of critical incidents being escalated to L3 for immediate handling.
  • Team player with the ability to work autonomously.
  • Reportar esta oferta
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación