CTM - SOC Engineer

Job description / Role

Grade: Manager

EY is seeking the region’s best Cybersecurity Engineer who wants to join an elite team and have access to the latest global technologies for a Security Operations Center (SOC). This position fulfils the most critical role of keeping the SOC technologies tuned and configured that will identify the most sophisticated of Cyber-attacks. The SOC Engineer will work closely with specialized and dedicated SOC deployment teams and architects to onboard clients and be part of a global network of engineers to drive innovation. In addition, to working closely with the SOC Analyst, they will also develop a close working relationship with the SOC OT and IoT specialists, Threat Intelligence teams, and be the technology champion for the SOC Manager.

The SOC Engineer will work with a team that thrives on innovation to identify and respond to the latest security attacks. Responsibilities include working on new technology implementations, performing security monitoring, event analysis, investigation and constructing countermeasures for today's threats.

Key Responsibilities:
- Responsible for supporting the SOC during normal business hours and on-call rotation basis outside normal business hours
- Review and conduct analysis of intrusion detection systems, security incident event management systems, network traffic and data from solutions such as anti-malware, advanced endpoint detection/prevention, firewalls, internet/email gateways and VPNs
- Conduct packet analysis to identify anomalies in protocols and payloads as well as a security penchant to stay up-to-date with the latest malcode, attack vectors and security trends
- Participate in incident handling, discovery, triage, containment, recovery, and remediation plan coordination
- Assist with evaluation and integration of new products and technologies
- Provide project support to integrate security platforms as well as ongoing tuning support for existing technology

To qualify, candidates must have:
- A real passion for Cybersecurity and a focused state of mind to understand how technology can assist and support to actively hunt and protect from the cyber threats we face today. We are looking for Cyber Security Operations Centre Professionals with capability and experience in some of the following areas:
- Excellent team work, passion and drive to succeed and combat Cyber threats
- Deployment and configuring SIEM technologies and platforms such as Splunk, Arcsight, QRadar or others
- Threat Intelligence / feeds platform integration in SOCs
- Thorough knowledge of how the systems support Security Monitoring for the Analysts
- Cyber Incident Response
- Awareness of Big data analytics, dashboards, eGRC and behavioral analysis tools
- Awareness of Cyber OT and IoT issues
- Awareness of Attack & Penetration Testing / Ethical Hacking
- Awareness of Application Security Risk Assessment

Requirements

- Must have a Bachelor degree in Computer, Information Systems or Engineering related field preferred
- 5 + years’ experience with Cyber technologies and preferrable within SOC
- In depth Desktop OS and Server OS knowledge
- Strong networking and application knowledge
- Strong analytical and problem solving skills
- Network monitoring technology platforms such as Fidelis XPS, RSA or others
- End point protection tools, techniques and platforms such as CarbonBlack, Symantec, McAfee or others
- Internationally recognized technical certifications in relevant areas
- Hands-on experience with TCP/IP, security concepts, WAN and LAN concepts, Routing Protocols, Firewall Security policies
- Hands-on experience with industry leading security vendor platforms, including products such as Juniper security devices, ASA, Snort, Cisco IDS, Websense, NetForensics, etc
- Hands-on experience with industry leading network management platforms
- Practical experience on customer service processes and solving issues
- Experience in VPN technology, PKI, AAA, and IDS concepts

About the Company

EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. We develop outstanding leaders who team to deliver on our promises to all of our stakeholders. In so doing, we play a critical role in building a better working world for our people, for our clients and for our communities.

EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients. Information about how EY collects and uses personal data and a description of the rights individuals have under data protection legislation are available on our site.

The MENA practice of EY has been operating in the region since 1923. For over 95 years, we have grown to over 7,500 people united across 21 offices and 16 countries, sharing the same values and an unwavering commitment to quality. As an organization, we continue to develop outstanding leaders who deliver exceptional services to our clients and who contribute to our communities. We are proud of our accomplishments over the years, reaffirming our position as the largest and most established professional services organization in the region