Remote Employee BPO has a great opportunity for you!
Role: SOC Analyst I
Salary: Competitive Basic Salary
Benefits: HMO plus 2 Free Dependents, P1,500 Rice Allowance, Night Differential.
Shift schedule: Sunday 5AM - 2PM and Monday Thursday 12AM - 9AM PHT.
Day Off: Tuesday, Friday, Saturday
Work set up: Work from Home
Duties and Responsibilities:
The SOC Analyst (Level 1) is responsible for:
- Initial triage of security events using established procedures, tools and monitoring platforms including, but not limited to:
- Firewalls and network devices
- Servers and workstations
- Web proxies
- Intrusion detection and prevention systems (IDS/IPS)
- Anti-malware systems
- Security Incident and Event Management systems (SIEM)
- Data Loss Prevention systems (DLP)
- Advanced Endpoint Detection and Response systems (EDR)
- External communications from outside entities, users, phone calls, emails.
- Assist senior members of the SOC with analyzing and responding to potential security incidents
- Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities, malware, and other threats that have the potential to impact our client organizations.
- Document threat campaign(s) techniques, lateral movements and extract indicators of compromise (IOCs).
- Manage the Security monitoring tools, set up dashboards and alerts.
- Develop and maintain technical documentation and Standard Operating Procedures (SOP).
- Conduct security research and intelligence gathering on emerging threats and exploits.
- Participate on shift-transition calls to ensure all open cases and tasks are properly managed and addressed.
- Periodic reporting of metrics and corresponding analysis for client review and strategic information security program adjustments and planning.
- Maintenance and management of various security technology platforms including Crowdstrike and Microsoft Sentinel.
Qualifications:
- Highly motivated to work in information security
- Customer oriented & professional.
- Strong verbal and written communication skills, fluent in English.
- Ability to understand and correlate data from multiple sources, not limited to user authentication events, windows security event logs, syslog, NetFlow/PCAP data, DHCP logs, DNS logs, intrusion detections alerts, proxy logs, packet captures, and firewall events.
- Knowledge of various security methodologies and processes, and technical security solutions is a plus.
- Understanding of how both Windows, Linux and network platforms are compromised is a plus.
- Experience as a Security/Network Administrator or equivalent knowledge. Previous Security Operations Center (SOC) experience is a plus.
- Experience with Security Information and Event Management (SIEM) tools is a plus.
- Regular expression creation experience to support dynamic security event analysis.
- Solid understanding of IP networking fundamentals, including IPv4, TCP/IP, LAN/WAN design theory, static and dynamic routing protocols, NAT, ACLs, etc.
- Solid Understanding of TCP/IP, the OSI Model, and underlying Protocols.
- Scripting language skills in Python or PowerShell are a plus.
- Understanding of cyber forensics concepts, including malware, hunt, etc. a plus.
- Understanding how to interpret vulnerability and penetration scan results a plus.
- Configuration and knowledge of design and implementation concepts of firewall, VPN, IPS, vulnerability management platforms, and other security technologies is desirable
- Bachelors degree in Information Technology or equivalent experience preferred; background will be considered in lieu of formal education.
- Competency with Microsoft Operating Systems, including server and workstation and AD engineering and administration capabilities, is desirable
- Basic knowledge of Linux operating systems (command line and GUI) is a plus
- Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies
- Type at least 40 words per minute
- Flexible schedule for working on nights and weekends.