L1 SOC Analyst - Threat Monitoring and Triage

Technosys Solution

Qatar

Ref: SP495-03

Job description / Role

Employment: Full Time

The Threat Monitoring function is responsible to monitor security events, perform initial investigation and escalate according to documented response playbooks.

The Threat Monitoring and Triage function is responsible for security alert monitoring that includes threats alert analysis, security alerts escalation, false positive assessment, gather contextual data, threats classification, initial triage and prioritization, suggestions to respond, closing or escalation of the alerts to response groups or Tier 2 / Tier 3.

• Real-Time “eyes on glass” Monitoring
• Monitoring of security events received through alerts from SIEM
• Performing triage of incoming alerts (initial assessing the priority of the event, initial qualification of incident to determine risk and damage)
• Perform initial analysis and investigation for security alerts
• Notifying and escalating to appropriate contact for response
• Provide remediation/countermeasure recommendations, if applicable
• Adjust alert prioritization options based on security incident criticality
• Should be able to work in shifts 24x7

Requirements

• Strong knowledge and experience of networking protocols
• Ability to trace down an endpoint on the network based on ticket information
• Familiarity with system log information and what it means
• Understanding of common network services (web, mail, DNS, authentication, AD, DHCP, NAT)
• Understanding of common Telco Services.
• Knowledge of host-based security tools such as Anti-malware, and EDR
• Knowledge of packet and log analysis
• Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat)
• General Desktop OS and Server OS knowledge
• Strong analytical and problem-solving skills
• Previous Experience of SIEM and SOAR
• Knowledge of Threat Intelligence Platform will be an advantage

About the Company

Technosys is IT Software Company we have Expertise in Developing Best quality Website and Mobile app Development, Software Development, IoT Application, Block chain, Crypto currency etc.

We provide you with the best quality and cost-effective solutions, with quick response. We provide complete end to end services from Consulting, Development, and Support to our clients. Our well-Experiences and Professional team are here to provide you the world-class App and Software Development Services. Technosys was established to deliver leading edge solutions and integrated services to businesses and organizations. We are created with the vision to make process easier, providing our customers with robust strategic approach and customizable enhanced solutions in various sector of business.

Get personalised updates on latest vacancies
Job Alerts by Email
  • Personalised updates on latest career opportunities
  • Insights on hiring and employment activity in your industry
  • Typically sent twice a month