Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the jetpack domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/wathefty/public_html/jobs/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the rank-math domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/wathefty/public_html/jobs/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the advanced-ads domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/wathefty/public_html/jobs/wp-includes/functions.php on line 6114
DFIR Specialist - وظيفتي
وظائف قطروظائف مونستر قطر

DFIR Specialist

Job Description

Our Client
Leading US based IT MNC
Your Responsibilities

  • Work as a part of the SOC team
  • Operate as a first point of escalation for Tier 2.
  • Hunt for suspicious anomalous activity based on data alerts or data outputs from various toolsets.
  • Review and build new operational processes and procedures.
  • Provide first-responder forensics analysis and investigation.
  • Drive containment strategy during data loss or breach events.
  • Triage and resolve advanced vector attacks such as botnets and advanced persistent threats (APTs).
  • Work directly with data asset owners and business response plan owners during low and medium severity incidents.
  • Provide advice on the tuning of Security controls like proxy policy, in-line malware tools based on threat feeds, trust and reputation data, incidents, or vulnerabilities, and exploits of downstream systems.
  • Develop SOC use cases, provide tuning recommendations to administrators based on findings during investigations or threat information reviews.
  • Perform Threat hunting based on threat intelligence feeds
  • Lead response actions for incidents where CIRT is not required to intervene (low/medium priority).
  • Perform administrative tasks per management request (ad hoc reports/ trainings).

Your Qualifications

  • Graduate degree or equivalent
  • 5+ years of minimum experience in Information security
  • 2+ years of prior experience in a similar position
  • CEH certified
  • SEC511: Continuous Monitoring and Security Operations training
  • SANS SEC504: Hacker tools, Techniques, Exploits, and Incident Handling training
  • SANS FOR500 series training
  • Advanced Security Essentials – SEC501 (optional GCED certification)
  • Perimeter Protection In-Depth – SEC502 (optional GCFW certification)

Halian Group
With over 20 years of experience, we have come to understand that innovation is the only way to provide agile, practical solutions that transform businesses and careers.
Our tech-talent and smart services help you to realise tomorrow's potential. Discover the amazing things possible when you bring the right people and the right technologies together.

Job Details

Employment Types:

Part time

Industry:

IT / Computers – Software

Function:

IT

Roles:

Software Engineer / Programmer

للتقدم على الوظيفة اضغط هنا

مقالات ذات صلة

اترك تعليقاً

لن يتم نشر عنوان بريدك الإلكتروني. الحقول الإلزامية مشار إليها بـ *

زر الذهاب إلى الأعلى