Assistant Vice President, Senior SOC Analyst, Security Operations

Responsibilities

• Lead proactive hunting and analysis against the dataset (e.g., alerts, logs, etc.) and reverse engineering as needed to support Security Operation Centre (SOC) investigations and proactive threat detection and prevention.
  
  
• Coordinate and facilitates in-depth analysis, trending, and root cause analysis of security events/incidents while creating and maintaining processes and procedures.
  
  
• Perform advanced research on threats, vulnerabilities and potential threat vectors and work with multi-disciplines to improve prevention and detection methods.
  
  
• Act as the technical subject-matter-expert for SOC related topics or during incidents,
• Develops and documents the SOC procedures and processes based on industry best practices and internal requirements.
  
  
• Support or lead projects to improve SOC effectiveness, advancing technical capabilities on pace with the latest threats.
  
  
• Support and integrate with incident response, threat intelligence, and overall security strategy as needed.
  
  
• Perform other essential duties as assigned.
  
  

Job Requirements

• Bachelor's degree in IT or equivalent with min.
  
  5years of working experience and has 3 years of experience leading a SOC team.
  
  
• Strong knowledge in networking / major internet protocols and security concepts
• Min.
  
  3years of experience in cyber incident response and/or Security Operations center in an enterprise environment.
  
  
• Min.
  
  2years of experience with standard enterprise security tools (e.g., Database Activity Monitoring, Zero Trust Segmentation, Security Information &Event Management, Intrusion Detection Prevention System,Endpoint Detection &Response, etc)
• Min.
  
  2years of operational experience with Splunk or similar log aggregation/analysis platforms
• Expert execution of investigative concepts for escalated incidents to determine the impact and root cause.
  
  
• Strong foundation in security threat and attack countermeasure.
  
  
• Possess analytical and problem-solving skills, with the ability to manage multiple tasks in a fast-paced environment.
  
  
• Hands-on experience in SIEM and intrusion detection analysis as well as application layer protocols.
  
  
• Have experience in security related areas.
  
  Especially experience and expertise in security incident detection and threat intelligence are proven to be extremely useful.
  
  
• Advanced understanding of various operating systems and web technologies with professional security certifications would be a plus.
  
  
• Experience in multiple domains within IT or Information Security (e.g. Identity and access management, IT infrastructure operations, Key management, system administration etc.)
• Meticulous, team player, flexible, proactive and positive attitude
• Strong sense of responsibility and initiative.
  
  
• Excellent communication and interpersonal skills.