Senior SOC Engineer

Job Description & Role:

• In-depth knowledge and experience of event/log analysis, security alerts, threat trends, security event triage, intrusion analysis, malware, threat hunting, and anomalous behavior.

Design, implement, and monitor security measures for the protection of the systems, networks, and information. This includes after-hours on-call support and handling technical problems escalated from Level 1.

• Establishing and constructing security standards and best practices that an organization should follow

• Implementing security controls to protect an organization’s infrastructure, computer system, and digital files

• Organizing and conducting scans and testing in order to identify vulnerabilities

• Reporting results of scanning or testing and providing security recommendations for further system security enhancement directly to the management

• Preparing and documenting standard operating procedures and protocols.

• Ensuring that the organization is aware of security incidents as much as possible, as quickly as possible

• Educating the workforce on information security standards, policies, and best practices

• Conducting penetration testing by simulating an attack on the • system to find exploitable weaknesses

• Monitoring networks and systems for security breaches, through the use of software that detect intrusions and abnormal system behavior

• Responding to any security breaches or intrusions that may occur.

• Experience with Firewalls (functionality and maintenance), Office 365 Security, Endpoint Security, Sandboxing, SIEM, DNS security, EDR, WAF, DLP, and related technologies.

• Solid background in Network and Network Security

• Provide the necessary assistance and support for the organization and its customers.

• Plan design and implement IDC (Internet Data Centre) upgrades and evolution

• Provide the NOCSOC team with adequate technical tools for monitoring and managing security systems and networks

• Advanced problem troubleshooting/isolation

• Advanced problem resolution following written procedures

• New procedures creations/initiations

• Procedures maintenance and validation

• Report creation, validation & distribution

• Support sales organization for technical matters when required

• Quality assurance and management.

• Security project implementation (Firewalls, DNS, switch configurations, network operating systems configurations, etc.)

• Proper vulnerability management.

• Assist in reporting and documentation, tuning the tools, and introducing of new products/tools for the NOCSOC

• Assist in other activities and projects as needed

• Implementation and maintenance of network security

Customer projects reporting

• Managing security escalations.

• Execute changes with clear identification of risks and mitigation plans to be captured into the change record.

• Produce trend analysis reports for identifying tasks for automation, leading to a reduction in tickets and optimization of effort