Job Description

:
Role Proficiency:
Serve as the first point of contact for cyber security incidents escalations and investigation. Work with different teams to improve service provided by SOC to clients around the globe.
Outcomes: * React on cyber security incident escalation from L1 or customer on defined SLA and with proper investigation

• Analyze the L1 processes and create a new relevant process for service
• Analyzing the L1 requests for SIEM rule tuning and suggest relevant changes
• Perform trends analysis on collected data (s and incidents) and detection rules coverage
• Providing trainings for L1 on new technologies and tools
• Work with different teams (SIEM L1 TAM and etc) to provide required service to customers
• Perform review on handled s

Measures of Outcomes: * Accurate review on all handled s by L1 daily

• Reply to escalation on time based on defined SLA
• Number of False Positive detections reduced
• Percentage of threats that are blocked detected and reported

Outputs Expected:
Incident Advance investigations : * Investigate an incident escalated from previous layer

• Include investigation in customer's security tools

Review and improve work and processes in L1 team: * Performing daily review on L1 activity (closed and escalated s/incidents) to validate that the investigation is in required quality and the decisions are correct
Improve SOC detection and monitoring service : * Analysis the triggered detection rules in SIEM solution to reduce a false positive rate and improve detection quality
Skill Examples:
SIEM IPS WAF etcFast self-learningGood analytic skillsGood soft skills (Verbal and writing)Presentation skill (Verbal)Programming languages such as C C# Python Perl Java PHP and Ruby on Rails
Knowledge Examples:
Knowledge Examples * Experience as SOC analyst or parallel role in cyber security

• Good knowledge in cyber security area: Understanding attack methods and tools understanding the attack vectors be familiar with defence methodology be updated on current trends in cyber
• Have experience in incident guideline definitions

Additional Comments:
The SOC Information Security Analyst will serve as a key SOC team member, responsible for conducting technical analysis, assessments, and recommendations to ensure real-time security situational awareness, secure operational network and identity management systems, and application security monitoring, with a minimum of 7 years of direct industry experience. Key Responsibilities o Investigate and resolve complex security incidents. o Define, implement, and monitor security use cases o Perform technical evaluations to enhance SOC security operations and incident response capabilities. o Analyze logs, execute security tasks, and document findings for threat mitigation and incident resolution. o Collaborate with extended stakeholder to gather security requirements and translate those to security monitoring use cases. o Conduct proactive security assessments and drive corrective actions based on SOC guidelines. o Handle escalated incident response and advisory requests, ensuring timely resolution. o Analyze data from security logging systems to detect and mitigate threats effectively. Technical Skills o Advanced expertise in security technologies: Firewalls, IDS/IPS, VPN, SD-WAN, DNS, IPsec, encryption. o Strong proficiency in IT security, antivirus, web/email security, and Windows/Linux services. o Skilled in scripting and deploying automation tools for network/security domains. o Experience with network management tools for performance tuning and troubleshooting. o Hands-on expertise with SIEM tools: IBM QRadar, Splunk, Google Security Operations (SecOps)
Skills:
Soc,Cyber Security,Google security
About Company:
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact--touching billions of lives in the process.

Skills Required