The SOC Analyst is responsible for a broad range of responsibilities with a primary emphasis on 24/7, Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents.
Acts as the primary service relationship interface between customers and ATI SOC Operations.
- Supports in carrying out SOC-as-Service project system implementations for customers using the IT service management framework, which involves the whole ITSM and ITIL Framework.
Monitors alert, health of security sensors and endpoint from SIEM.- Collects data and context necessary to initiate Incident Response work.
Creates tickets and ensures regular update to tickets is being performed.
- Perform other duties and functions deemed necessary for ATI SOC.
Must be a graduate of Computer Studies/Computer Engineering/Information Technology/Electronics Engineering or equivalent
With at least 3 years of working experience in a SOC Operations environment- Must have at least 1 significant certification (CCNA Routing & Switching, CCNA Wireless, CCNA CyberOps, CompTIA Security+, CompTIA CySA+ (Cybersecurity Analyst), EC Council Computer Hacking Forensics Investigator, EC Council: Certified Ethical (CEH), ITIL, Windows Admin, Linux Admin, Customer Service)
Familiarity (0-1 year experience) on the following:
IP Networking- Monitoring Systems (_SIEM, WAF, Email Gateway_)
Cybersecurity Fundamentals
- Firewall intrusion detection, prevention, and protocol
Different Security Threats (Spam / Phishing Email, Social Engineering, Malware, DDOS, Brute Force Attack, etc.)- Penetration Testing & Vulnerability Testing (_Optional_)
QRadar SIEM Job Types: Full-time, Permanent
Benefits:
Schedule:
Monday to Friday
Supplemental pay types:
Experience:
Security Operations: 1 year (Required)
