As a SOC Analyst, you will be responsible for conducting incident response operations according to documented procedures and industry best practices. You will provide monitoring and data correlation to events of interest using multiple tools such as system event logs, SIEM, IPS/IDS logs, network traffic, anti-virus console and client end-point software to determine if incidents took place. You will also respond to security incident and investigation requests in line with established processes and procedures within defined service level targets.
SOC Analyst
Kraków- Career development opportunities in the Cybersecurity field, including professional certification paths
- Access to online training environments
- International environment
- Attractive salary, bonuses, and benefits package including Luxmed VIP medical package, MyBenefit System (Multisport or Cafeteria), private insurance, entertainment events, and many others
- Good atmosphere at work and comfortable working environment with Herbalife products and game corner
- Flexible working hours
- Remote working possibility
- Chance to share your ideas and continuously improve our processes
- Opportunity to build up your expertise through coaching, soft skills, and training sessions
- Review, investigate and respond to security alerts based on established processes and procedures
- Create tickets and monitor the workflow for tasks to be executed by responsible teams
- Monitor and identify abnormal security events and trigger the call list/distribution list
- Recognize potential and successful cyber intrusions and compromises through log review and analysis of relevant logged information
- Perform security incidents investigation
- Analyze and assess security incidents and escalate to appropriate internal teams for additional assistance
- Develop reports and/or briefings for events/incidents and share them with internal teams
- Perform tasks as identified in the security operations process manual and runbooks
- Experience with a reputable services/consulting firm offering security consulting, implementation, and/or managed security
- Technical experience in Security Operations Center (SOC) and/or cyber security incident response
- Knowledge in security event analysis
- Experienced in security incident response and investigation, root cause analysis and troubleshooting, and post-incident reporting
- Understanding of common attacks (e.g. brute force, SYN flood, session hijack, smurf, etc.) and their SIEM signatures
- Understanding of network protocols
- Understanding of operating system (Windows, Linux, iOS), web server, database, and security devices (firewall/NIDS/NIPS) logs, and log formats
- Verbal and written English communication skills
Agencja zatrudnienia – nr wpisu 47
