Senior SOC Engineer
Job Description
• Assist and mentor L1 Analysts on triage
• Perform tier 2 incident analysis and response for escalated incidents
• Communicate with SOC management, senior SOC staff members, and customers regarding investigations and status updates
• Design, create and maintain custom SIEM content (creation, evaluation, and tuning of rules, reports, dashboards, etc.)
• Design, create and maintain custom tools that support incident handling and response activities
• Conduct research on attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits to accordingly enhance the threat and technical intelligence of our Cyber Defense services
• Responsible for the continuous availability and support of the on-premise and cloud SOC infrastructure as well as of the CPEs
• End-to-end client integration with SOC (aka client onboarding) for fresh installations and ad hoc scope expansions
• SOC infrastructure design, implementation, maintenance, and support
• Manage system health and capacity utilizing monitoring tools
• Development and improvement of manuals and documentation (deployment and configurations guides, troubleshooting guides, technical articles, etc.)
• Interface regularly with the SOC Manager to provide feedback on SOC operations.
• On-call support during non-business hours
• Perform other duties as assigned by management
Requirements
• 3+ years of Information Security with at least 2 years of experience in incident analysis and response activities.
• Experience in a SOC environment is preferred
• Demonstrated experience in a SIEM product
• Significant experience performing analysis of logs from a variety of sources
• Experience with packet analysis (Wireshark) and malware analysis
• Knowledge of current security trends, threats, and techniques
• Experience with scripting (Perl, Python, or bash scripting)
• Good verbal and written communication skills
• Desired: IT Security Certification such as GCIH/GCIA/CEH/CISSP, product certifications such as SIEM certifications, or ability to obtain via self-study within one year of hire date