Job Description

Overview:
is at the forefront of technology innovation, delivering breakthroughs and trusted insights in electronic design, simulation, prototyping, test, manufacturing, and optimization. Our ~15,000 employees create world-class solutions in communications, 5G, automotive, energy, quantum, aerospace, defense, and semiconductor markets for customers in over 100 countries. Learn more
Our culture embraces a bold vision of where technology can take us and a passion for tackling challenging problems with industry-first solutions. We believe that when people feel a sense of belonging, they can be more creative, innovative, and thrive at all points in their careers. Responsibilities:
The Cybersecurity Analyst will be responsible for

• the handling, and escalation of, alerts which require technical triage and analysis. This may include web attacks, malware infections, and phishing campaigns, which have been identified by the Information Risk & Security team's technology stack. Functional Responsibilities
• Experience Monitoring SIEM solutions and a variety of other security devices found in a SOC environment (e.g. Behavioral Analytics tools, IDS/IPS, log management tools, and security analytics platforms. o Creating and maintaining documentation for security event processing. o Acknowledge and handle the incoming security alerts.
• Use the internal ticketing system and dashboards to update the tickets/alerts accordingly and escalating them to the appropriate teams if necessary.
• Assist the Incident Response team on alerts escalated to them by the SOC team. o Develop/Update and follow Standard Operating Procedures (SOPs) and Playbooks to handle standard and out-of-band alerts.
• Report to the Incident Response Team quickly and efficiently regarding urgent matters. o Ensure ticket queues are always within satisfactory limits and all tickets are updated. o Provide On-Call Support for emergency or high severity issues.

Liaise with partner teams and end-users for security related tickets and activities. Qualifications:

• Excellent verbal and written communication skills.
• Excellent analytical and problem-solving skills required.
• Minimum of 3+ years of experience in a SOC or Cybersecurity.
• Equivalent Certifications (Network+, Security+, CySA+, GSEC, GMON, etc.)
• Experience working with SIEMs and evaluating SIEM alerts, EDR , NDR
• Experience leveraging core security and infrastructure technologies during investigations (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS) Key Competencies
• Ability to think with a security mindset. The successful candidate has a good IT background with good level knowledge of multiple relevant security practice areas (anti-malware solutions, patch and vulnerability management, network security; monitoring; endpoint, etc.) o Knowledge of TCP/IP Protocols, network analysis, and network/security applications. o Good knowledge of various security tools and monitoring devices; e.g. able to read and understand IDS/IPS/Firewall/Proxy logs and determine the current state of play.
• Experience in correlating malware infections with attack vectors to determine the extent of security and data compromise.
• Ability to work in a time-sensitive environment; must be detail oriented and able to multitask to meet deadlines and company objectives.
• Experience in large, geographically diverse enterprise networks.
• Ability to build lasting relationships with partner teams and stakeholders.
• Strong written and oral communication skills, including the ability to interact directly with customers that do not have an IT background.
• Documentation; experience in writing reports and documenting tickets efficiently and accurately.

***Keysight is an Equal Opportunity Employer.***

Skills Required