Security Operations Center (SOC) Level 3

Your key responsibilities
The Security Operations Center (SOC) Level 3 (L3) manages multiple Security technologies and produces enhancements that allow SOC team members to work collaboratively and efficiently while responding to threats.

The individual in this role will work as part of a cybersecurity operations team responsible for carrying out 24x7 onsite security monitoring operations.

Skills and attributes for success

• Provide evidence, perform data collection, documentation, and structured analysis of forensic data and present the findings to business users.

Perform triage and conduct thorough examinations of all types of digital media within client environment

• Forensically analyze both Windows & Unix systems for evidence of compromise.

Perform log analysis locally and via SIEM/log aggregation tool.

• Hunt threat actors in large enterprise networks and cloud environments.

Analyze and/or decipher packet captures from network protocol analyzers (Wireshark, TCPdump, etc).

• Live response python scripting, memory collection, Volatility analysis, Kali, advanced grep knowledge. Able to do initial IR triage and staff on incident bridge calls.

Qualification

• 5+ Years of Cyber Security experience in a 24x7 SOC environment and handling L3 Security Issues or complex incidents (Issues that have been escalated by L2 SOC Analyst)

Experienced using SIEM Tools (Splunk, Azure Sentinel etc.)

• Experienced in Cyber Incident Response, Security Monitoring, Malware Analysis, Reverse Engineering, Digital Forensics and Deep Investigation

Analyze and respond to security events/threats from different security logs and other security threat data sources includes (endpoint analysis and other security platforms)

• Threat detection ,triage, and remediation using various security tools such as EDR, email security and IDS/IPS

Understanding on common threat vectors (malware, email, and website analysis at a basic level).

• Experienced using EDR Tools (Carbon Black, Tanium, CrowdStrike, Defender etc)

Must have shift lead experience or was able to manage a team

Job Types: Full-time, Permanent

Pay: Php100,

• 00 - Php150,000.00 per month
  
  Benefits:
• Additional leave

Company Christmas gift

• Company events

Health insurance

• Life insurance

Opportunities for promotion

• Paid training

Pay raise

• Promotion to permanent employee

Schedule:

• 8 hour shift

Supplemental pay types:

• 13th month salary

Anniversary bonus

• Bonus pay

Commission pay

• Overtime pay

Performance bonus

• Quarterly bonus

Tips

• Yearly bonus

Application Question(s):

• With 5+ Years of Cyber Security experience in a 24x7 SOC environment and handling L3 Security Issues or complex incidents (Issues that have been escalated by L2 SOC Analyst)

Experienced using SIEM Tools (Splunk, Azure Sentinel etc.)

• Experienced in Cyber Incident Response, Security Monitoring, Malware Analysis, Reverse Engineering, Digital Forensics and Deep Investigation

Can threat detection ,triage, and remediation using various security tools such as EDR, email security and IDS/IPS

• Experienced using EDR Tools (Carbon Black, Tanium, CrowdStrike, Defender)

Have shift lead experience or was able to manage a team
Can start ASAP