:SOC Engineer ::CA Local at Remote, Remote, USA |
Email: [email protected] |
Remote::SOC Engineer ::CA Local 100% remote SOC Engineer CITIZEN,GREEN CARD Samsung Candidate comes from SaaS clients no banking or Finance Candidate Should be in CA only! Three Page resume only kind of Genuine Candidate only! Every Highlighted line is a must have! Job Summary: The SOC Engineer will monitor, detect, analyze, and respond to security incidents affecting the SPC environment. You will leverage your automation skills to streamline SOC operations and enhance incident response capabilities. The candidate must have robust oral and written documentation and communication skills. This position should bring prior analytical problem-solving skills, sound judgment, knowledge, and expertise in IT Security. Job Responsibilities: Must be able to build security API portal in Python(Must have to know the Coding In python) SOAR -Security orchestration, automation, and response. SIEM - Security information and event management Monitor security event management systems (SIEM) and other tools to detect security incidents and anomalies. Investigate and analyze security incidents, determine root causes, assist in vulnerability assessments, and manage remediation efforts. Develop and implement automation scripts and workflows to improve SOC efficiency, including incident response automation and playbook creation. Perform in-depth analysis of logs to identify indicators of compromise (IOCs) and potential security breaches. Develop and maintain incident response plans and procedures to ensure optimal response to security incidents. Coordinate with analysts and other stakeholders to promptly escalate and respond to security incidents. Provide guidance and mentorship to analysts on incident detection, analysis, and response techniques. Participate in security incident tabletop exercises and simulations to test and improve incident response capabilities. Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques. Contribute to continuous improvement initiatives within the SOC, including process refinement and tool enhancement, and generate SLI/SLO-related metrics to show improvements. Act as one of the information security subject matter experts for the Incident Response team and assist in escalations impacting Samsung. Yearly travel may be required for approximately one to two weeks per year, subject to change as business requirements evolve. Qualifications and Requirements Must have a solid understanding of information technology and security best practices. Hands-on cloud experience; one or more of AWS, Azure, GCP - desired but not required. Collaborate effectively with teams across different functions. Must possess a basic understanding of network routers, switches, and firewalls. Passionate about automation, performance, reliability, visibility, and finding creative solutions to complex security issues using Python. Proficient in Linux, including understanding security hardening for Linux, web applications, and databases such as MariaDBSQL and MariaDB. Experience with Kubernetes is a plus. Familiarity with open-source security tools and applications. Strong attention to detail with exceptional organizational skills Availability to work in a 24/7 environment, including weekends and holidays, with on-call duties. 5+ Years of experience From Client MUST HAVES Candidates need him to build security API portal so we will provide integrated security events and information when a use queries with an IP address or hostname -> a unified security API endpoint for all teams Let candidate review the daily logs from SIEM, SDAP, AWS, S-Gate, this will help him to understand and find abnormal activities from the logs and he may help us to create the workflow, even he will automate the review process too Python, basic security and SOC understanding, API development, Linux, MariaDB, Postgres. We do not care about the things that dont apply to what we are doing. When we see candidates with long resumes it is a red flag. Om Verma Tech. Recruitment specialist Mob : 4695189899/ whatsapp-8506910297 Email: [email protected] TEK Inspirations LLC : 13573 Tabasco Cat Trail, Frisco, TX 75035 Keywords: information technology California Texas :SOC Engineer ::CA Local [email protected] |
[email protected] View all |
Tue Aug 27 19:18:00 UTC 2024 |