JOB DESCRIPTION / ROLE
Provide analysis and trending of security log data from a large number of heterogeneous security devices. Correlate data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs. Construct and exploit open source and classified threat intelligence to detect, respond, and defeat advanced persistent threats (APTs)Provide Incident Response (IR) support when analysis confirms actionable incident. Support efforts of others during all phases of the Incident Response process. Analyze and respond to previously undisclosed software and hardware vulnerabilities. Perform root cause analysis, document findings and collaborate with technology/process owners to prevent future occurrences. Perform raw data review in an effort to identify malicious activity. Integrate and share information with other analysts and other teams. Participate in documentation process to ensure accuracy of documentation critical to the team’s success. Assist with the development of new content and tuning existing content for SIEM, IDS, and other security technologies. Interact with other IT personnel, sometimes of different nationalities.Other duties as assigned. Provide off-hours, on-call support.
Salary:
OMR
800 to 1,100
per month inclusive of fixed allowances.
REQUIREMENTS
Needs to have a good understanding of cybersecurity.
Familiar with SIEM solutions LogRhythm or Qradar
Qualifications And Education Requirements:
Must have a High School Diploma. 3-5 years in the cybersecurity, SOC field. Bachelor’s Degree in Computer Sciences preferred 4. Required to have at least two of the below certifications:Network+ (beginner)Security+ (beginner)CSA+ (intermediate)GSEC (intermediate)GCIH (intermediate)GMON (intermediate)ECSA (intermediate)Certification origins must be accredited by ANSI or an equivalent authorized body under ISO/IEC Standard 17024PREFERRED SKILLS - Bachelor s Degree Professional certifications such as SANS GIAC/GCIH. Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) Additional NotesIDS monitoring and analysis. Network traffic and log analysis. Insider threat and APT detection. Malware analysis and forensics. Understanding/ differentiation of intrusion attempts and false alarms. Investigation tracking and threat resolution. Compose security alert notifications TCP/IP, computer networking, routing and switching C, C++, C#, Java or PHP programming languages. Firewall and intrusion detection/prevention protocols Windows, UNIX and Linux operating systems. Network protocols and packet analysis tools.
Job Types: Full-time, Contract
Professional Competencies:
Proven skills in technical writing, verbal communications, consulting, and problem solving in a rapidly changing technical environment. Proven experience being team-oriented and self-motivated, with a keen attention to detail and the ability to work independently. Ability to effectively communicate and work with individuals from diverse backgrounds or cultures.Proficient in Incident Management and Response. Experience in security device management and SIEMIn-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.Experience in threat management. Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix. Knowledge of applications, databases, middleware to address security threats against the same.Excellent communication skills. Ability to handle high pressure situations with key stakeholders. Good Analytical skills, Problem solving and Interpersonal skills. Working knowledge and experience with MS office with proficiency in Excel
ABOUT THE COMPANY
National Security Services Group (NSSG) is a cyber security firm located in the Sultanate of Oman.
NSSG is designed to assist the private and government sectors determine their in-depth threats and provide solutions in coordination with our partners, which alleviates and reduces the risk in the every growing world today.
NSSG seeks only the best and most qualified personnel to lead companies and governments alike, into the future.
