Job Details

Home

:SOC Engineer ::CA Local at Remote, Remote, USA

Email: [email protected]

Remote::SOC Engineer ::CA Local

100% remote

SOC Engineer

CITIZEN,GREEN CARD

Samsung

Candidate comes from SaaS clients no banking
or Finance

Candidate Should be in CA only! Three Page
resume only kind of Genuine Candidate only!

Every Highlighted
line is a must have!

Job Summary:

The
SOC Engineer will monitor, detect, analyze, and respond to security incidents
affecting the SPC environment. You will leverage your automation skills to
streamline SOC operations and enhance incident response capabilities. The
candidate must have robust oral and written documentation and communication
skills. This position should bring prior analytical problem-solving skills,
sound judgment, knowledge, and expertise in IT Security.

Job
Responsibilities:

Must
be able to build security API portal in Python(Must have to know the
Coding In python)

SOAR -Security orchestration, automation, and response.

SIEM
- Security information and event management

Monitor security event
management systems (SIEM) and other tools to detect security incidents and
anomalies.

Investigate
and analyze security incidents, determine root causes, assist in vulnerability
assessments, and manage remediation efforts.

Develop
and implement automation scripts and workflows to improve SOC efficiency,
including incident response automation and playbook creation.

Perform in-depth analysis of logs to identify indicators of compromise
(IOCs) and potential security breaches.

Develop
and maintain incident response plans and procedures to ensure optimal response
to security incidents.

Coordinate
with analysts and other stakeholders to promptly escalate and respond to
security incidents.

Provide
guidance and mentorship to analysts on incident detection, analysis, and
response techniques.

Participate
in security incident tabletop exercises and simulations to test and improve
incident response capabilities.

Stay
up-to-date with the latest cybersecurity threats, vulnerabilities, and
mitigation techniques.

Contribute
to continuous improvement initiatives within the SOC, including process refinement
and tool enhancement, and generate SLI/SLO-related metrics to show
improvements.

Act
as one of the information security subject matter experts for the Incident
Response team and assist in escalations impacting Samsung.

Yearly
travel may be required for approximately one to two weeks per year, subject to
change as business requirements evolve.

Qualifications
and Requirements

Must
have a solid understanding of information technology and security best
practices.

Hands-on
cloud experience; one or more of AWS, Azure, GCP - desired but not required.

Collaborate
effectively with teams across different functions.

Must
possess a basic understanding of network routers, switches, and
firewalls.

Passionate about automation, performance,
reliability, visibility, and finding creative solutions to complex security
issues using Python.

Proficient in Linux, including understanding security hardening for
Linux, web applications, and databases such as MariaDBSQL and MariaDB.

Experience with Kubernetes is a plus.

Familiarity with open-source security tools and applications.

Strong attention to detail with exceptional organizational skills

Availability to work in a 24/7 environment, including weekends and
holidays, with on-call duties.

5+ Years of experience

From Client MUST HAVES

Candidates need him to build security API
portal so we will provide integrated security events and information when a use
queries with an IP address or hostname -> a unified security API endpoint
for all teams

Let candidate review the daily logs from
SIEM, SDAP, AWS, S-Gate, this will help him to understand and find abnormal
activities from the logs and he may help us to create the workflow, even he
will automate the review process too

Python, basic security and SOC
understanding, API development, Linux,

MariaDB, Postgres. We do not care about the
things that dont apply to what we are doing. When we see candidates with long
resumes it is a red flag.

Om
Verma

Tech. Recruitment
specialist

Mob
:
4695189899/
whatsapp-8506910297

Email:

[email protected]

TEK
Inspirations

LLC
: 13573 Tabasco Cat
Trail, Frisco, TX 75035

Keywords: information technology California Texas
:SOC Engineer ::CA Local
[email protected]

[email protected]
View all

Tue Aug 27 19:18:00 UTC 2024

To remove this job post send "job_kill 1696338" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

omtek0011@gmail.com wrote:
Remote::SOC Engineer ::CA Local

100% remote

SOC Engineer

CITIZEN,GREEN CARD

Samsung

Candidate comes from SaaS clients no banking
or Finance

Candidate Should be in CA only! Three Page
resume only kind of Genuine Candidate only!

Every Highlighted
line is a must have!

Job Summary:

The
SOC Engineer will monitor, detect, analyze, and respond to security incidents
affecting the SPC environment. You will leverage your automation skills to
streamline SOC operations and enhance incident response capabilities. The
candidate must have robust oral and written documentation and communication
skills. This position should bring prior analytical problem-solving skills,
sound judgment, knowledge, and expertise in IT Security.

Job
Responsibilities:

Must
     be able to build security API portal in  Python(Must have to know the
     Coding In python)

SOAR -Security orchestration, automation, and response.

SIEM
     - Security information and event management

Monitor security event
management systems (SIEM) and other tools to detect security incidents and
anomalies.

Investigate
and analyze security incidents, determine root causes, assist in vulnerability
assessments, and manage remediation efforts.

Develop
and implement automation scripts and workflows to improve SOC efficiency,
including incident response automation and playbook creation.

Perform in-depth analysis of logs to identify indicators of compromise
(IOCs) and potential security breaches.

Develop
and maintain incident response plans and procedures to ensure optimal response
to security incidents.

Coordinate
with analysts and other stakeholders to promptly escalate and respond to
security incidents.

Provide
guidance and mentorship to analysts on incident detection, analysis, and
response techniques.

Participate
in security incident tabletop exercises and simulations to test and improve
incident response capabilities.

Stay
up-to-date with the latest cybersecurity threats, vulnerabilities, and
mitigation techniques.

Contribute
to continuous improvement initiatives within the SOC, including process refinement
and tool enhancement, and generate SLI/SLO-related metrics to show
improvements.

Act
as one of the information security subject matter experts for the Incident
Response team and assist in escalations impacting Samsung.

Yearly
travel may be required for approximately one to two weeks per year, subject to
change as business requirements evolve.

Qualifications
and Requirements

Must
have a solid understanding of information technology and security best
practices.

Hands-on
cloud experience; one or more of AWS, Azure, GCP - desired but not required.

Collaborate
effectively with teams across different functions.

Must
possess a basic understanding of network routers, switches, and
firewalls.

Passionate about automation, performance,
reliability, visibility, and finding creative solutions to complex security
issues using Python.

Proficient in Linux, including understanding security hardening for
Linux, web applications, and databases such as MariaDBSQL and MariaDB.

Experience with Kubernetes is a plus.

Familiarity with open-source security tools and applications.

Strong attention to detail with exceptional organizational skills

Availability to work in a 24/7 environment, including weekends and
holidays, with on-call duties.

5+ Years of experience

From Client MUST HAVES

Candidates need him to build security API
portal so we will provide integrated security events and information when a use
queries with an IP address or hostname -> a unified security API endpoint
for all teams

Let candidate review the daily logs from
SIEM, SDAP, AWS, S-Gate, this will help him to understand and find abnormal
activities from the logs and he may help us to create the workflow, even he
will automate the review process too

Python, basic security and SOC
understanding, API development, Linux,

MariaDB, Postgres. We do not care about the
things that dont apply to what we are doing. When we see candidates with long
resumes it is a red flag.

Om
Verma

Tech. Recruitment
specialist

Mob
: 
4695189899/
whatsapp-8506910297

Email:

om.verma@tekinspirations.com

TEK
Inspirations

LLC
 : 13573 Tabasco Cat
Trail, Frisco, TX 75035

Keywords: information technology California Texas 
:SOC Engineer ::CA Local
omtek0011@gmail.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 0

Location: ,