| Onsite || SOC engineer || RTP, NC at Remote, Remote, USA |
| Email: pankaj@tanishasystems.com |
|
From: Pankaj, Tanishasystems.com pankaj@tanishasystems.com Reply to: pankaj@tanishasystems.com Hi, We are looking Jr. SOC Engineer and Incident response - Splunk and AWS Must and Needed RTP, NC 12 Months- Include someone to work in 24/7 Environment and to support over weekend Prefer- Ex Cisco SOC Engineer You'll respond to security incidents and analyze and correlate log data with the assistance of teammates as a critical lead role within the Security Incident Response Team (SIRT). You'll report findings to leadership and other internal Client teams while collaborating with engineers to enhance, improve, and modify enterprise and cloud (IaaS, SaaS) configurations based on investigations. Additionally, you'll provide recommendations and apply lessons learned from incidents for tools, process, capabilities and other new technologies to support business objectives. Responsibilities Analyzing network traffic to identify malicious activity or compromised systems, prevent successful attacks Ability to collaborate within the team as well as security engineering and detection engineering teams to improve and build new tailored security detections Properly analyze alerts and being able to decipher between and investigation and an incident Keep up-to-date on modern attack techniques to continually integrate knowledge into new detections Contribute to playbooks, and use cases to protect our cloud Building relationships with the other technical teams across our engineering and infrastructure functions Perform root cause analysis on incidents Maintains situational awareness for cyber threats across the global firm and take action where necessary. Work through incident response engagements through containing security incidents, and remediation Works mostly independently, translating guidance and direction from management into the best approach to accomplish work. Solves moderately complex problems Investigate data breaches and malicious activity leveraging forensics tools; analyze Windows, and Linux, in cloud environments to identify Indicators of Compromise (IOCs); examine firewall, web, database, and other log sources to identify evidence of malicious activity. Track emerging security practices and contribute to building internal processes, and our various products. Be able to respond to incidents with minimal guidance Have a detailed understanding of splunk and AWS Good to advanced understanding of Splunk, alert creations and creating signatures Experience using Splunk, developing, maintaining, and tuning alerts Experience with cloud environments or technologies Proven knowledge and understanding of security incident types, indicators of compromise (IOCs), Indicators of Attack (IOA), and tools, tactics, and procedures (TTPs) Experience responding to incidents and alerts Pankaj Kumar Tanisha Systems Inc An ISO-Certified Company Phone: 212-729-6543 Ext 365 Email: pankaj@tanishasystems.com Address: 99 Wood Ave South, Suite#308 Iselin, NJ 08830 Keywords: New Jersey North Carolina Onsite || SOC engineer || RTP, NC pankaj@tanishasystems.com |
| pankaj@tanishasystems.com View All |
| 01:32 AM 05-Apr-24 |