SOC Administrator- Security
Job Description
Job Description :
Job Description & Role:
In-depth knowledge and experience of event/log analysis, security alerts, threat trends, security event triage, intrusion analysis, malware, threat hunting, and anomalous behavior.
Design, implement, and monitor security measures for the protection of the systems, networks, and information. This includes after-hours on-call support and handling technical problems escalated from Level 1.
Establishing and constructing security standards and best practices that an organization should follow
Implementing security controls to protect an organization's infrastructure, computer system, and digital files
Organizing and conducting scans and testing in order to identify vulnerabilities
Reporting results of scanning or testing and providing security recommendations for further system security enhancement directly to the management
Preparing and documenting standard operating procedures and protocols.
Ensuring that the organization is aware of security incidents as much as possible, as quickly as possible
Educating the workforce on information security standards, policies, and best practices
Conducting penetration testing by simulating an attack on the system to find exploitable weaknesses
Monitoring networks and systems for security breaches, through the use of software that detect intrusions and abnormal system behavior
Responding to any security breaches or intrusions that may occur.
Experience with Firewalls (functionality and maintenance), Office 365 Security, Endpoint Security, Sandboxing, SIEM, DNS security, EDR, WAF, DLP, and related technologies.
Solid background in Network and Network Security
Provide the necessary assistance and support for the organization and its customers.
Plan design and implement IDC (Internet Data Centre) upgrades and evolution
Provide the NOCSOC team with adequate technical tools for monitoring and managing security systems and networks
Advanced problem troubleshooting/isolation
Advanced problem resolution following written procedures
New procedures creations/initiations
Procedures maintenance and validation
Report creation, validation & distribution
Support sales organization for technical matters when required
Quality assurance and management.
Security project implementation (Firewalls, DNS, switch configurations, network operating systems configurations, etc.)
Proper vulnerability management.
Assist in reporting and documentation, tuning the tools, and introducing of new products/tools for the NOCSOC
Assist in other activities and projects as needed
Implementation and maintenance of network security
Customer projects reporting
Managing security escalations.
Execute changes with clear identification of risks and mitigation plans to be captured into the change record.
Produce trend analysis reports for identifying tasks for automation, leading to a reduction in tickets and optimization of effort.
Additional Requirements:
Computer and Communication Engineer (CCE) or another degree in relevant discipline.
NSE4 certificates or above.
CCIE security is a plus.
CEH or CHFI.
CISSP is a plus
4 -8 years of experience in networking & security (Switches, Routers, Firewalls, SIEM, Sandboxing, WAF, etc.).
Excellent knowledge and hands-on experience in configuring, supporting, and managing high-end infrastructure security, SIEM solutions, WAF and Firewalls, DNS Security, VA/PT, DDoS prevention solutions.
Ability to manage multi tenants platforms and solutions.
Experience in planning, designing, implementing, and managing security, networks, and Platforms.
Clients management and communication handling.
Systematic and process oriented.
Good troubleshooting, project management, communication, and presentation skills
Security Incident handling and management skills.
English and Arabic are a must.
Penetration testings skills are plus.
Advance knowledge on Security Information and Event Management (SIEM) technologies.
Thorough and practical knowledge of OWASP.
Hands on experience of working on Windows and Linux
Job Details
Employment Types:
Full time
Industry:
Recruitment / Staffing / RPO
Function:
IT
Roles:
Software Engineer / Programmer
Skills:
Security Analysis EDR Project Management Troubleshooting Presentation Skills Communication Siem Networking Waf