SOC Analyst - Dubai, United Arab Emirates - Infosec Ventures

Infosec Ventures
Infosec Ventures
Verified Company
Dubai, United Arab Emirates

1 week ago

Ahmed Al-Mansouri

Posted by:

Ahmed Al-Mansouri

beBee Recruiter
Description

Job Information:

Industry


Health Care
***Work Experience


4-5 years
***City


Dubai
***State/Province


Dubayy (Dubai)
***Country


United Arab Emirates
***Zip/Postal Code



***
About us:
Job Description for L1, L2 and L3 Analyst
***The Level 1,2 and 3 Analyst participates in 24x7x365 coverage for event monitoring, incident detection and response within the DHA CSOC.


The Level 1 and Level 2 Analysts analyse output from various technologies to effectively identify anomalous events and triage security incidents.

The analyst is responsible for either escalating suspected Incidents to L3 Analysts or handling the Incident in line with documented Incident Response procedures.


Responsibilities:


  • Monitor alerting tools (SIEM) and handle escalated incidents from Helpdesk and end users.
  • Triage alerts as they come in through SIEM and action appropriately.
  • Respond to common alerts in a consistent and repeatable manner from multiple alerting sources ensuring to gather context and intelligence.
  • Provide escalations of unknown threats to Level 2 Analysts.
  • Develop and maintain CSOC documentation.
  • Perform Incident Response for qualifying L1 incidents & develop Incident Response
  • Procedures for common, repeatable Incident types.

Experi
ence &
Qualificat
ions

  • Good understanding of Network Infrastructure and enterprise IT
  • Strong understanding of Security concepts and best practices.
  • Good understanding cloud security tools and techniques.
  • Experience in SIEM, and Log monitoring and analytics (Preferably RSA Net witness, Microsoft Sentinel, QRadar, Splunk) and EDR monitoring and analytics experience (Preferably Defender, Crowd strike, Cybereason, Carbon black).
Ability to query, filter and interpret TCP/IP packets to identify anomalies and IOC's
Possess understanding of security technologies and tools.

  • Experience working in a 24/7/365 service driven environment.

Suggested Certi
fi
cati
ons

  • GIAC Security Essentials Certification (GSEC)
  • Certified Security Analyst (ECSA)
  • Certified Incident Handler (ECIH)
  • Certified Ethical Hacker (CEH)
  • CompTIA Security+
More jobs from Infosec Ventures
See all jobs of Infosec Ventures