Job Details

Home

Hiring Now-SOC Engineer || Location: Remote! Need California candidate only || Duration: 12 Month at California, Maryland, USA

Email: [email protected]

From:

sangya kumari nahak,

adventa

[email protected]

Reply to:   [email protected]

Title: SOC Engineer

Location: Remote! Need California candidate only

Duration: 12 Month

Visa: CITIZEN,GC EAD,GREEN CARD

MOI: Skype

Candidate must have comes from SaaS client and Three page resume only!

candidate have to score 50% on Python coding!

Job Summary:

The SOC Engineer will monitor, detect, analyze, and respond to security incidents affecting the SPC environment. You will leverage your automation skills to streamline SOC operations and enhance incident response capabilities. The candidate must have robust oral and written documentation and communication skills. This position should bring prior analytical problem-solving skills, sound judgment, knowledge, and expertise in IT Security.

Job Responsibilities:

Must be able to build security API portal in Python.

SOAR -Security orchestration, automation, and response.

SIEM - Security information and event management

Monitor security event management systems (SIEM) and other tools to detect security incidents and anomalies.

Investigate and analyze security incidents, determine root causes, assist in vulnerability assessments, and manage remediation efforts.

Develop and implement automation scripts and workflows to improve SOC efficiency, including incident response automation and playbook creation.

Perform in-depth analysis of logs to identify indicators of compromise (IOCs) and potential security breaches.

Develop and maintain incident response plans and procedures to ensure optimal response to security incidents.

Coordinate with analysts and other stakeholders to promptly escalate and respond to security incidents.

Provide guidance and mentorship to analysts on incident detection, analysis, and response techniques.

Participate in security incident tabletop exercises and simulations to test and improve incident response capabilities.

Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.

Contribute to continuous improvement initiatives within the SOC, including process refinement and tool enhancement, and generate SLI/SLO-related metrics to show improvements.

Act as one of the information security subject matter experts for the Incident Response team and assist in escalations impacting Samsung.

Yearly travel may be required for approximately one to two weeks per year, subject to change as business requirements evolve.

Qualifications and Requirements

Must have a solid understanding of information technology and security best practices.

Hands-on cloud experience; one or more of AWS, Azure, GCP - desired but not required.

Collaborate effectively with teams across different functions.

Must possess a basic understanding of network routers, switches, and firewalls.

Passionate about automation, performance, reliability, visibility, and finding creative solutions to complex security issues using Python.

Proficient in Linux, including understanding security hardening for Linux, web applications, and databases such as MariaDBSQL and MariaDB.

Experience with Kubernetes is a plus.

Familiarity with open-source security tools and applications.

Strong attention to detail with exceptional organizational skills

Availability to work in a 24/7 environment, including weekends and holidays, with on-call duties.

5+ Years of experience

From Client MUST HAVES

Must be able to patch 1000 servers at scale

Candidates need him to build python security API portal so we will provide integrated security events and information when a use queries with an IP address or hostname -> a unified security API endpoint for all teams

Let candidate review the daily logs from SIEM, SDAP, AWS, S-Gate, this will help him to understand and find abnormal activities from the logs and he may help us to create the workflow, even he will automate the review process too

Python, basic security and SOC understanding, API development, Linux,

MariaDB, Postgres. We do not care about the things that dont apply to what we are doing. When we see candidates with long resumes it is a red flag.

. Open-source Security Tools

I have hands-on experience with various open-source security tools

such as:

OSSEC for host intrusion detection.

Snort for network intrusion detection and prevention.

Metasploit for penetration testing.

Wireshark for network traffic analysis.

OpenVAS for vulnerability scanning.

Kali Linux for comprehensive security assessments.

Keywords: information technology green card
Hiring Now-SOC Engineer || Location: Remote! Need California candidate only || Duration: 12 Month
[email protected]

[email protected]
View all

Fri Oct 04 21:45:00 UTC 2024

To remove this job post send "job_kill 1814647" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

sangya@adventatech.com wrote:
From:

sangya kumari nahak,

adventa

sangya@adventatech.com

Reply to:   sangya@adventatech.com

Title: SOC Engineer

Location: Remote! Need California candidate only

Duration: 12 Month

Visa: CITIZEN,GC EAD,GREEN CARD

MOI: Skype

Candidate must have comes from SaaS client and Three page resume only!

candidate have to score 50% on Python coding!

Job Summary:

The SOC Engineer will monitor, detect, analyze, and respond to security incidents affecting the SPC environment. You will leverage your automation skills to streamline SOC operations and enhance incident response capabilities. The candidate must have robust oral and written documentation and communication skills. This position should bring prior analytical problem-solving skills, sound judgment, knowledge, and expertise in IT Security.

Job Responsibilities:

Must be able to build security API portal in  Python.

SOAR -Security orchestration, automation, and response.

SIEM - Security information and event management

Monitor security event management systems (SIEM) and other tools to detect security incidents and anomalies.

Investigate and analyze security incidents, determine root causes, assist in vulnerability assessments, and manage remediation efforts.

Develop and implement automation scripts and workflows to improve SOC efficiency, including incident response automation and playbook creation.

Perform in-depth analysis of logs to identify indicators of compromise (IOCs) and potential security breaches.

Develop and maintain incident response plans and procedures to ensure optimal response to security incidents.

Coordinate with analysts and other stakeholders to promptly escalate and respond to security incidents.

Provide guidance and mentorship to analysts on incident detection, analysis, and response techniques.

Participate in security incident tabletop exercises and simulations to test and improve incident response capabilities.

Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and mitigation techniques.

Contribute to continuous improvement initiatives within the SOC, including process refinement and tool enhancement, and generate SLI/SLO-related metrics to show improvements.

Act as one of the information security subject matter experts for the Incident Response team and assist in escalations impacting Samsung.

Yearly travel may be required for approximately one to two weeks per year, subject to change as business requirements evolve.

Qualifications and Requirements

Must have a solid understanding of information technology and security best practices.

Hands-on cloud experience; one or more of AWS, Azure, GCP - desired but not required.

Collaborate effectively with teams across different functions.

Must possess a basic understanding of network routers, switches, and firewalls.

Passionate about automation, performance, reliability, visibility, and finding creative solutions to complex security issues using Python.

Proficient in Linux, including understanding security hardening for Linux, web applications, and databases such as MariaDBSQL and MariaDB.

Experience with Kubernetes is a plus.

Familiarity with open-source security tools and applications.

Strong attention to detail with exceptional organizational skills

Availability to work in a 24/7 environment, including weekends and holidays, with on-call duties.

5+ Years of experience

From Client MUST HAVES

Must be able to patch 1000 servers at scale

Candidates need him to build  python security API portal so we will provide integrated security events and information when a use queries with an IP address or hostname -> a unified security API endpoint for all teams

Let candidate review the daily logs from SIEM, SDAP, AWS, S-Gate, this will help him to understand and find abnormal activities from the logs and he may help us to create the workflow, even he will automate the review process too

Python, basic security and SOC understanding, API development, Linux,

MariaDB, Postgres. We do not care about the things that dont apply to what we are doing. When we see candidates with long resumes it is a red flag.

. Open-source Security Tools

I have hands-on experience with various open-source security tools

such as:

OSSEC for host intrusion detection.

Snort for network intrusion detection and prevention.

Metasploit for penetration testing.

Wireshark for network traffic analysis.

OpenVAS for vulnerability scanning.

Kali Linux for comprehensive security assessments.

Keywords: information technology green card 
Hiring Now-SOC Engineer || Location: Remote! Need California candidate only || Duration: 12 Month
sangya@adventatech.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 1

Location: ,