Role Purpose

Internal Security analysts’ offers 24/7 monitoring that requires hands-on expertise and specific skillsets in handling daily tasks; detect, investigate, and respond to incidents. They are responsible for the internal network security by monitoring security consoles, escalating change requests and security events to the proper department in order to meet SLA stipulated. It is considered as the first line of support for any internal security related concerns.

Common Role Accountabilities:

• Monitor security consoles, identify suspicious behavior and policy violations of network and host traffic
• Monitor configuration changes across core network and host devices
• Report incidents to appropriate support group
• Escalate advanced security events to Team Lead
• Provide daily security reports or by-request log/audit reports
• Carry out all activities outlined in ISOC policies and procedures

Level-Specific Accountabilities

• Managed assets include ITAC, Alert Logic, Trend micro Officescan and Control Manager
• Access tools include Syslog, Solarwinds, GLPI, Footprints (Internal Controls, SOC, CCB, CSS, Deployment, Install, SAC)

Experience & Qualifications

• Knowledge in basic networking principles, TCP/IP, IP addressing and UDP/TCP
• Knowledge in firewalls and intrusion detection systems/intrusion prevention systems (specific understanding in any of the following IDS/IPS is considered a plus: Cisco, Snort, Fortinet)
• Knowledge in common network services (web, mail, FTP, SSL), network vulnerabilities, and network attack patterns
• Experience with Linux/Windows System Administration
• Experience with Network/System Administration
• Experience using Cisco’s CSA agents
• Experience with security assessment tools (NMAP, ISS, NESSUS) is preferred
• Excellent communication skills
• Strong analytical and problem solving skills
• Certifications can include any vendor certification or general network security certification
• Bachelor’s degree in Computer Science, Computer Engineering, Network Security, Information Security, Information Technology or equivalent work experience. 1-2 years of work experience in the field
• Willing to work on flexible schedules