Job Summary:

We are in the lookout for a hands-on Security Analyst L1 for a shift-based role for our 24x7x365 SOC operations. Acting as a first line of support for client’s security concerns, responsible for monitoring security consoles, analyzing and reporting alarms to clients. Should be able to respond to threats and provide recommendations on how to mitigate future threats.

Duties/Responsibilities:

• Monitors security consoles, identifies suspicious traffic, and responds to security events from customer devices.
• Assist in Computer Security Incident Response activities for large organizations as a 1st line security analyst to identify various malicious threats in enterprise environments.
• Ensure timely accurate communications of alerts to IT, Network or Security groups regarding intrusions and compromises to their network infrastructure, applications and operating systems.
• Assist Senior Analysts with the implementation of countermeasures or mitigating controls.
• Although not directly accountable for changes to policy and guidelines, you will be required to make recommendations to improve operational effectiveness and efficiency.

Required Skills/Abilities:

• Basic knowledge the fundamentals of cyber security:
  • Security Administration
  • Understanding of basic networking principles, TCP/IP, IP addressing, etc.
  • Good grasp of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns.
  • Incident containment, recovery and mitigation.
• Knowledge of Mitre Attack Framework.
• Excellent customer service skills.
• Strong analytical and problem-solving skills.
• Willing to work flexible schedules.
• Self-motivated, adaptable, who is detailed oriented.

Education and Experience:

• Graduate of Computer Science, Engineering Degree, or Information Technology.
• Broad experience of technologies including but not limited to; Firewalls, IPS & IDS, UTM, Active Directory, Windows Server, Linux, TCP/IP, Networks, AWS, CDN's, Vulnerability management and SIEM, DRM.

Desirable:

• Relevant security certifications including SSCP, CEH, Security+, CySa+, GCIH.
• Experience with SIEM, EPP, EDR, AV, and/or Service Desk toolsets.
• Evidence of working to SLAs within a Security Operations Centre.
• Previous experience of working within a shift-based structure as part of a 24x7x365 service delivery environment is advantageous.