Dear Applicant,
We are hiring for role of SOC L3 analyst for one of our client at Qatar Loc.
Experience : 8+ years
Location : Qatar
NP : 30 days - Immediate joiners
Profile Requirements
• Proposition of specific recommendations
• Investigate and solves security breaches and other cyber security incidents and provide incident response.
• Incident analysis for correlation rules design and implementation
• Business use-cases design and deployment
• Check of applied recommendation for L3 incidents
• Validates weekly, monthly, quarterly, half and yearly reports
• Definition and follow up of incident reconstruction plans
• Malware analysis, reverse engineering
• Deals with incidents from L2 and investigation and qualification of L2 incidents
• Access to tiers tools for investigation
• Development, fine-tuning, and implementation of threat detection analytics
• Provides investigation on complex incidents.
• Forensic handling and threat hunting
• Provides forensics investigation and analysis ( memory, filesystem, network, mobile iOS/Android forensics,
• Analyze and provides threat intelligence information
• Provides advisories on incident modelling and reconstruction
• Define new correlation rules in the SIEM depens on the requirements
• Provides security crisis management
• Very good communication skills with fluent English
• Deep log analysis skills on SIEM - Logrhythm, Logrhythm experience is mandatory.
• Very good knowledge of Windows and/or Linux/Unix,
• Very good understanding of security incidents, networking and common protocols,
• Scripting in Python, Bash, Perl, PowerShell.
• Review standard security arrangements — that is, provide external/semi-external reviews
• Manage audits and training for new threats
• Stay current on IT security trends and news.
• Analyze for attacks, intrusions and unusual, unauthorized or illegal activity
• Investigate new vulnerabilities and share the latest industry-level responses
• Investigate security breaches and other cyber security incidents and provide incident response.
• Liaise with different internal and external stakeholders when an incident occurs
• Manage remotely‑stored critical information (passwords, network configs, etc.) in an emergency
• Use advanced analytic tools to determine emerging threat patterns and vulnerabilities
• liaise with stakeholders in relation to cyber security issues and provide future recommendations
• Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
• Document security breaches and assess the damage they cause.
• Work with security team to perform tests and uncover network vulnerabilities.
• Fix detected vulnerabilities to maintain a high-security standard.
• Stay current on IT security trends and news.
• Research security enhancements and make recommendations to management.
Suitable professionals please drop me your updated CV to [اضغط هنا لمشاهدة البريد اﻹلكتروني]