Novo Portal de
Emprego das Tecnologias de Informa??o Empresas em Destaque |
Vector Synergy is recruiting now for the position of Security Operation Centre Analyst for an International Organisation in Luxembourg. Duties / role The following list of tasks applies to this reference profile. This list is not exhaustive and may evolve in time, also depending on the type of assignment: • Real-time monitoring of cyber defence and intrusion detection systems; • Automatic-based processing (centralisation, filtering and correlation) of security events; • Human-based analysis of automatically correlated events; • Processing of incoming warnings, alerts and reports; • Triage based on verification, level of exposure and impact assessment; • Categorize events, incidents and vulnerabilities based on relevance, exposure and impact; • Open tickets and ensure case management; • Activate initial response plan based on standard playbook entries; • Maintain incident response address book; • Provide support to incident responders; • Advise affected users on appropriate course of action; • Monitor open tickets for incidents/vulnerabilities from start to resolution; • Escalate unresolved problems to higher levels of support, including the incident response and vulnerability mitigation teams; • Configure the SIEM components for an optimal performance; • Integrate cyber-defence solutions for efficient detection; • Define dashboards and reports for reporting on KPIs; • Produce qualified reports (including recommendations) or alerts to SOC customers and follow-up on actions; • Contribute to the design of the overall monitoring architecture, in close relationship with the customers/system owners, on the one hand, and the security operations engineering team, on the other hand; • Produce and maintain accurate and up-to-date technical documentation, including processes and procedures (so called playbook), related to security incidents and preventive maintenance procedures; • Management of identities and its related user accounts; • Management of groups, roles and other means of authorization; • Solve incidents, requests and problem tickets from 1st Level Support or internal customers related to identity and access management; • Maintain accurate documentation; • During security incidents, implement detection means to monitor attacker activities in realtime; • During security incidents, support the incident response team in the review/analysis of security logs and visualise the attack; • Integrate IOCs in security solutions; • Take an active part in developing and improving the maturity framework, and have it understood and implemented by the team; • Provide activity reports to management to demonstrate service SLA and service quality. Other Requirements • Proven ability to communicate effectively orally and in writing with fluent English; • Desirable: EU Secret Security Clearance. If you are interested in participating in the recruitment process, please send your resume to ---@--- or contact me directly on +48 605 045 717. |
Pagina Principal Como Anunciar Contacto
|