Security Operations Centre Analyst Level 2At Derivco, we work alongside our clients who are considered giants in the industry, to create and develop the platform that hosts some of the best online casino games in the industry.We are also Platinum partners with vendors such as Microsoft and we areproud to say we employ over 2,500 of the brightest minds across our offices in the USA, South Africa, UK, Spain, Malta, Sweden and Australia.To work for Derivco means you willwork with cutting-edge technology., in our designer offices. Our people are brilliant., our ideas fresh and our technology is trailblazing.You will be inspired, challenged, and stimulated every day and you willreceive an extraordinary number of high-fives - rewarded for work well done. A place where you will feel as if you have found your intellectual and creative home.Sounds pretty awesome, right?Derivco is an equal opportunities employer. We value people as individuals with diverse opinions, cultures, lifestyles and circumstances and we are committed to equality of opportunity and to providing a productive working environment free from unfair and unlawful discrimination.Job DescriptionThe job function is to provide dedicated "eyes on glass" monitoring and analysis capability for SOC operations. The analyst will conduct analysis of security events to include validation, escalation, and reporting of events of interest, based on the guidelines that event handlers provide to them. The SOC Analyst will be responsible for these events of interest and will make sure they are continuously monitored and reviewed.Experience:Investigates deeper on the detected behaviors when an incident is escalated by the SOC level 1 analystAdd context to the incident to understand the behavior, analyzing data from multiple tools and data sourcesParticipates to the crisis management by providing support to the incident handler and all SOC analystsCreate reports and visualizations of security attacksTracks trends for metrics and reportingWorks on the decrease of false positivesMaintain the detection rules databaseCheck external feedback from other teams daily and apply the results effectivelyGet feedback from the shift team on a weekly basis and assist where possible to address points of frustrationMonitoring that all Security tools are working properlyServices monitored will include, but are not limited to SIEM , Splunk, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP), DAM, ePO Job Profile SummaryAt Derivco, we work alongside our clients who are considered giants in the industry, to create and develop the platform that hosts some of the best online casino games in the industry.We are also Platinum partners with vendors such as Microsoft and we areproud to say we employ over 2,500 of the brightest minds across our offices in the USA, South Africa, UK, Spain, Malta, Sweden and Australia.To work for Derivco means you willwork with cutting-edge technology., in our designer offices. Our people are brilliant., our ideas fresh and our technology is trailblazing.You will be inspired, challenged, and stimulated every day and you willreceive an extraordinary number of high-fives - rewarded for work well done. A place where you will feel as if you have found your intellectual and creative home.Sounds pretty awesome, right?Derivco is an equal opportunities employer. We value people as individuals with diverse opinions, cultures, lifestyles and circumstances and we are committed to equality of opportunity and to providing a productive working environment free from unfair and unlawful discrimination.Job DescriptionThe job function is to provide dedicated "eyes on glass" monitoring and analysis capability for SOC operations. The analyst will conduct analysis of security events to include validation, escalation, and reporting of events of interest, based on the guidelines that event handlers provide to them. The SOC Analyst will be responsible for these events of interest and will make sure they are continuously monitored and reviewed.Experience:Investigates deeper on the detected behaviors when an incident is escalated by the SOC level 1 analystAdd context to the incident to understand the behavior, analyzing data from multiple tools and data sourcesParticipates to the crisis management by providing support to the incident handler and all SOC analystsCreate reports and visualizations of security attacksTracks trends for metrics and reportingWorks on the decrease of false positivesMaintain the detection rules databaseCheck external feedback from other teams daily and apply the results effectivelyGet feedback from the shift team on a weekly basis and assist where possible to address points of frustrationMonitoring that all Security tools are working properlyServices monitored will include, but are not limited to SIEM , Splunk, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP), DAM, ePOGeneral Skills:Security Operations Center (SOC) environment experience with at least 5 years of overall experience with 3 years of IT and include 2+ years of related SOC and incident monitoring experience a MUST.Experience with SIEM, Splunk, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP) and Security Event Correlation.Excellent analytical and problem-solving skills.Experience with technical writing.Possess an understanding of security standards and risk management.Have excellent written and verbal communication skills.Possess the ability to adjust and adapt to changing priorities in a dynamic environment.Be able to multi-task and be pro-active in addressing issues and requests.Possess technical acumen and the ability to understand and interpret technical specifications.Rigorous and respectful of process. Strong attention to details.Strong time management skills with the ability for multitasking.Information Security and operational oriented mind-set.Knowledge of security policies for information systems.Autonomous and self-organized.Monitoring Management:Handles escalations effectively, ensuring a minimal number of duplicate escalations createdReports back on identified trends that may be forming and/or proactive actions taken to reduce spamUpdates inaccurate and add missing knowledge base documents where requiredPerks of the Job:Health Insurance AllowanceCompany bonus structureGym AllowanceMobile AllowanceFree lunches daily in the officeOngoing learning & developmentA host of opportunities to explore new ideas & technologies and grow your career.Are you ready to take your seat amongst the best? Apply now! Explore more InfoSec / Cybersecurity career opportunitiesFind even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr
