Role Overview

Bank Boubyan requires an experienced and versatile SOC analyst that is capable of conducting both SOC engineering and SOC analyst tasks. SOC analyst tasks include monitoring, detecting, and responding to security incidents, while SOC engineering entails maintaining the security monitoring, detection, and response infrastructure.

Key Responsibilities

• Monitor and respond to alerts from EDR, XDR, SIEM, NDR, Email Security, and cloud security tools.
• Conducting incident response and digital forensics.
• Building incident timeline during incident response and digital forensics.
• Writing incident reports and documenting incident findings.
• Logging investigated incidents and alerts into a case management system.
• Assist with malware analysis requests.
• Building SOAR actions and playbooks.
• Ingesting new log sources into the SIEM.
• Ensuring new log sources are parsed on the SIEM.
• Ensuring existing use cases support the newly ingested log sources.
• Ensuring the SIEM is at a healthy state, by monitoring the health and recommending actions if any are required.
• Ensuring that log loss incidents are tackled.
• Creating new use cases as per raised requests.
• Fine tuning use cases as per raised requests.
• Reporting on log visibility and MITRE ATT&CK Framework detection coverage.
• Assisting with PCI DSS and ISO 27001 regulatory requirements.

Required Skills

• 3-5 years of experience
• Knowledge of SANS and NIST incident response process.
• SIEM solution utilization and administration.
• EDR.
• NDR.
• SOAR.
• MITRE ATT&CK Framework.
• Python scripting basics.
• Network and OS (Windows\Linux) fundamentals.
• Log analysis and alert triage.
• Case management.

Certifications (Preferred)

• Blue Team Level 1 - 2.
  

• للتقديم الان

• GCIH.
• GCFA.
• GREM.
• Security+.