Job Opportunities in Egypt
August 27, 2024
ITS Information Technology Solutions
الجيزة
FULL TIME
SOC Tier1 - Logarithm SIEM
(Dears, If you don't have Logrhythm SIEM Experience, Kindly don't apply)
Job Description:
Candidates in this role will respond to events according to documented procedures and industry best practices. Ideal candidates should be experienced in the areas of networking, client/server technologies, and analyzing log files with the ability to identify false positive and true positive events. Must have experience in Linux and/or Windows operating systems. Candidates must have strong multitasking capabilities and be able to evaluate threats, vulnerabilities, and risk while under pressure. Candidates in this role may also be required to follow the incident response plan and assist Incident Response Analysts when necessary. Must display enthusiasm and interest in Information Security
Standard Job Requirements
Job Description:
Candidates in this role will respond to events according to documented procedures and industry best practices. Ideal candidates should be experienced in the areas of networking, client/server technologies, and analyzing log files with the ability to identify false positive and true positive events. Must have experience in Linux and/or Windows operating systems. Candidates must have strong multitasking capabilities and be able to evaluate threats, vulnerabilities, and risk while under pressure. Candidates in this role may also be required to follow the incident response plan and assist Incident Response Analysts when necessary. Must display enthusiasm and interest in Information Security
Standard Job Requirements
- Part of the SOC team that runs 18x7, on a rotating shift schedule.
- Performing 1st level triage of incoming alerts into issues or incidents (initial assessing the priority of the event, initial determination of incident to determine risk and damage or appropriate routing of security or privacy data request).
- Responsible with maintaining all Level 1 analyst documentation (Ex. Incidents tracking sheets, Suspicious emails sheet).
- Provide initial investigation of security incidents.
- Review alerts escalated by end users.
- Provide limited incident response to end users for low complexity security incidents.
- Provide communication and escalation throughout the incident per the Organization SOC Process.
- Perform analysis of log files.
- Create and analyze reports and dashboards.
- Perform suspicions email analysis including mail header analysis, body and content or attachments.
- Prepare audit evidence (Ex: internal audit, group audit, PCI audit, etc).
- Propose any enhancement or optimization on SOC tools.
- Takes an active part in the containment of incidents, even after they are escalated.
- Collaborate in use case creation/tuning recommendations to the engineering team based on findings during investigations or threat information reviews.
- Escalating issues when necessary as per Organization OLA and procedures.
- Completion of assigned tasks with maximum performance as per SLA defined in SOC processes .
- Must have:
- Basic College Degree or equivalent.
- 6 months to 1+ year prior experience in a similar position.
- Logrhythm SIEM Experience
- Effective verbal and written communication skills.
- Highly disciplined and motivated, able to work independently, under direction or as a member of a team.
- Possess good logical and analytical skills to help in analysis of security events/incidents.
- Ability to make information security risk determinations.
- Familiarity with system log information and what it means.
- General Desktop OS and Server OS knowledge.
- General knowledge of TCP/IP, Internet Routing, UNIX / LINUX & Windows NT.
- Understanding of common network services (web, mail, DNS, authentication).
- Experience with the QRadar SIEM.
- Nice to have:
- Knowledge of network security zones, firewall, IDS.
- Knowledge of log formats for syslog, http logs, DB logs and how to gather forensics for traceability back to event.
- Knowledge with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat, etc...).
We regret to inform you that this job opportunity is no longer available
Latest Job Opportunities
Similar Jobs
September 11, 2024
Siemens Energy
Customs Specialist - Siemens Energy, Cairo Egypt
القاهرة
FULL TIME
View Details
October 7, 2024
Siemens Energy
Commercial Project Manager - Siemens Energy Cairo Egypt
القاهرة
FULL TIME
View Details
October 8, 2024
Siemens Energy
ESAP Lead - Siemens Energy, New Capital Egypt
القاهرة
FULL TIME
View DetailsNew Jobs from This Company
September 20, 2024
ITS Information Technology Solutions
PAM Specialist
الجيزة
FULL TIME
View DetailsSeptember 20, 2024
ITS Information Technology Solutions
Security Analyst - XDR Specialist
الجيزة
FULL TIME
View DetailsSeptember 8, 2024
ITS Information Technology Solutions
Cybersecurity SOC Manager
الجيزة
FULL TIME
View Details