SOC Analyst L3 - Doha, دولة قطر - Hot & Cold International Consulting

Hot & Cold International Consulting
Hot & Cold International Consulting
شركة تم التحقق منها
Doha, دولة قطر

منذ أسبوع

Aisha Al-Thani

تم النشر بواسطة:

Aisha Al-Thani

مسوّقة للمواهب لبيبي
وصف

The Security Operations Analyst Level 3 role is tasked with evaluating SIEM (Security Incident Event Manager) related events flagged for review by established strategies.


Profile Requirements

  • Proposition of specific recommendations
  • Investigate and solves security breaches and other cyber security incidents and provide incident response.
  • Incident analysis for correlation rules design and implementation
  • Business usecases design and deployment
  • Check of applied recommendation for L3 incidents
  • Validates weekly, monthly, quarterly, half and yearly reports
  • Definition and follow up of incident reconstruction plans
  • Malware analysis, reverse engineering
  • Deals with incidents from L2 and investigation and qualification of L2 incidents
  • Access to tiers tools for investigation
  • Development, finetuning, and implementation of threat detection analytics
  • Provides investigation on complex incidents.
-
Forensic handling and threat hunting

  • Provides forensics investigation and analysis ( memory, filesystem, network, mobile iOS/Android forensics,
  • Analyze and provides threat intelligence information
  • Provides advisories on incident modelling and reconstruction
  • Define new correlation rules in the SIEM depens on the requirements
  • Provides security crisis management
  • Very good communication skills with fluent English
-
Deep log analysis skills on SIEM
  • Logrhythm, Logrhythm experience is mandatory.
  • Very good knowledge of Windows and/or Linux/Unix,
  • Very good understanding of security incidents, networking and common protocols,
  • Scripting in Python, Bash, Perl, PowerShell.
  • Review standard security arrangements — that is, provide external/semiexternal reviews
  • Manage audits and training for new threats
  • Stay current on IT security trends and news.
  • Analyze for attacks, intrusions and unusual, unauthorized or illegal activity
  • Investigate new vulnerabilities and share the latest industrylevel responses
  • Investigate security breaches and other cyber security incidents and provide incident response.
  • Liaise with different internal and external stakeholders when an incident occurs
  • Manage remotely‐stored critical information (passwords, network configs, etc.) in an emergency
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
- liaise with stakeholders in relation to cyber security issues and provide future recommendations

  • Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
  • Document security breaches and assess the damage they cause.
  • Work with security team to perform tests and uncover network vulnerabilities.
  • Fix detected vulnerabilities to maintain a highsecurity standard.
  • Stay current on IT security trends and news.
  • Research security enhancements and make recommendations to management.
-
Min 8 years of experience in Cyber Security.

Salary:
QAR15, QAR21,000.00 per month


Ability to commute/relocate:

  • Doha: Reliably commute or planning to relocate before starting work (required)
المزيد من الوظائف من Hot & Cold International Consulting
انظر جميع وظائف Hot & Cold International Consulting