QC Engineer

Job Summary: The successfulcandidate will be part of a team of skilled cyber security analystswho will deliver specialist Cyber Securitycapability to contracted customers. This consists ofseveral security logging, security monitoring and securityoperations services, designed to detect external andinternal cyberattacks on the customers IT and networkinfrastructure. The Level 3 SOC Analyst is a seniormember of the SOC team and is required tosupervise, quality control and mentor junioranalysts. They should be proficient insecurity analyst tasks and have a deepunderstanding of intrusion activities, incidentresponse techniques, tools and procedures. Responsibilities: Deliver security-basedoperational support for Managed Service customers, inline with documented process andtimeframe. Research on Threat or Securityrelated news that could potentially impact aclient. Proactive threat hunting in large volumes ofdata depending on IOCs or TTPs, threatprofilingandvalidation. Receives escalations from customer ormanagement related to Incident Response which may lead to deeperanalysis. Tasks will include creation of a timeline,provide tactical and strategic recommendations, preparethe post incident report and after-actionreview. Handles communication to a mix of technicaland non-technical clientaudience. Compute and then create scanschedule for vulnerability management, coordinatedremediation including ad-hocrequests. Creates customreports based on the data gathered on a weekly/monthlybasis. Develop use case and/oroperational playbooks. Document encounteredprocesses for the SOC use. Providinganalytical and technical support tosolve a wide range of complex securityissues Raising support tickets and taking ownershipthrough to completion Participate in open communication betweenteam members Requirements Technical Knowledge: Degree incomputer science or equivalent. 3-5 years of Cyber Securityexperience. With SOC / CIRT / Vulnerability Management / Threat Intel / Security Administrationexperience. Thorough knowledge of security architecture,system administration and networking (including TCP/IP, DNS, HTTP,SMTP) Good understanding of the cyber securitylandscape and security concepts. Understanding the different occurrences ofincidents, different scenarios, andsituations. Knowledge in using at least 2 SIEMs is a plus. Preferably has Security relatedcertification. Skills and Attitudes: Willing to work in 24 x 7environment, including day and nightshifts. Commitment to continual education, personaldevelopment, and willingness tolearn. Strong troubleshootingskills and ability to manage issues through toresolution.