Significant experience managing cases with enterprise SIEM systems like Splunk
Experience and solid understanding of the following technologies:
Endpoint security products
Email security products for exchange like IronPort
Expertise with one or more of the following tools:
RSA | Security Analytics,
Wireshark or other information security tools.
Expertise with Deep packet and log analysis
Ability to create IDS/IPS content
Ability to Lead SOC analysis activity as necessary
Expert ability to recognize potential, successful and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
Expertise leveraging situational awareness reports for advanced threats such as Advanced Persistent Threat (APT) and Focused Operations (FO) incidents.
Be able to author Standard Operating Procedures (SOPs) and training documentation when needed.
Expert understanding of Network protocols and packet analysis tools.
Deep understanding Windows and Linux operating systems network behavior
Familiarity with basic Forensics and Malware Analysis
The ability to take lead on incident research when appropriate and be able to mentor junior analysts.
The ability to provide correlation and trending of cyber incident activity.
Understanding of concepts of identifying anomalous behaviors
Willingness to mentor and teach junior and mid-level analysts
Be able to provide timely and relevant Security Reports as necessary
One or more certifications, including but not limited to: GCIH, GCIA, GCFE, GREM, GCFA, GSEC, CEH, CISSP, CCNA (Security) or equivalent.
4+ years of monitoring and detection experience
Apply now to have the opportunity to be considered for similar jobs at leading companies in the Seen network for FREE.
Zero stress and one profile that can connect you directly to 1000s of companies.
We’ll take it from there. After you tell us what you’re looking for, we’ll show you off to matches.
Boost your interview skills, map your tech career and seal the deal with 1:1 career coaching.
Join now and be seen.