| Urgent req for SOC Security Engineer || IMMEDIATE PLACEMENT at Fremont, California, USA |
| Email: [email protected] |
| From: Sudhanshu Shekhar, Vyze [email protected] Reply to: [email protected] Job Description - Title: SOC Security Engineer Duration:6+months Location: Fremont CA Hybrid (Relocation will work) Visa: USC/GC/GC EAD/H4 EAD MUST HAVE: Incident response and their remediation analyze security events/log and threat detection. RESPONSIBILITIES: First layer of defense - responsible for quick detection and incident response using various security monitoring and automation tools Work with NOC, IT and various business units to triage and remediate detected security incidents and alerts Conduct in-depth investigation of alerts. Perform analysis and correlation of network traffic, OS and application-level events Signal and alert tuning (in collaboration with the Detection and Splunk teams). Research and analyse the latest attacker techniques observed in the real world and recommend automatic and manual remediation actions Create new and maintain existing security operation standards, procedures, playbooks Analyse security events/logs and report on threats and incidents across various platforms and environments. Escalate complex cases to the Detection team and the system owners. Assist with Threat Hunting activities during the active incidents Continuous tuning and improvement of the existing security signals, rules and alerts to improve detection and response time and reduce impact when an incident occurs QUALIFICATIONS: experience as a SOC Analyst. 5+ years of Experience performing security monitoring and incident response duties in a SOC environment Ability to quickly triage multiple security incidents and assign the right priority based on risk and confidence levels Good understanding of the common network security concepts including TCP/IP protocol stack, HTTP/HTTPS, TLS, WAF, VPN Good understanding and real-life experience responding to the common types of attacks such as DDoS, credentials stuffing, phishing/spam, adware/malware, attacks against Windows/Active directory environments, attacks against public cloud infrastructure (AWS) Security automation experience using tools such as Phantom or Demisto (SOAR, runbooks) is a plus. Keywords: information technology green card California |
| [email protected] View all |
| Thu Dec 07 23:59:00 UTC 2023 |