Browse
···
Log in / Register
Summary: Responsible for the secure operation, administration, and maintenance of Security Operations Center tools and solutions, ensuring system health and managing security logs and use cases. Highlights: 1. Manage and maintain SOC tools and solutions 2. Ensure overall health of SIEM and SOC technology components 3. Deploy and tune SIEM Use Cases driven by security intelligence **Job responsibilities:** * Responsible for overall secure operation, administration, maintenance of tools and solutions used by Security Operations Center (further referenced as SOC). Responsibilities and duties are planned as follows: * Continuous maintenance of the systems, tools and solutions, as well as any other attached systems used by Security Operations Center; including configuration management and system updates. * Ensuring the overall health of the SIEM system, ticketing system, and other SOC technology components. * Manage verification, validation, tuning, health and collection of Security logs. * Deploy and tune SIEM Use Cases and Rules driven by security intelligence inputs. * Implementing use cases as required by Security Intel teams. * Manage and coordinate equipment and system staging, on\-boarding, deployment, configuration \& troubleshooting. * Manage user access including user and group permissions updates for all SOC infrastructure solutions. * Ensuring that log sources are reporting the SIEM platform. * Generating reports as required by SOC management teams. * Configuration, management, performance \& capacity planning of SOC solution/products. * Support for POCs for new CSOC technology and advanced capabilities to adopt/implement * Review CSOC solution/products vendor announcements. * Should have good knowledge of systems, solutions and security tools and skills as follows: * Knowledge about MS Windows and UNIX based systems * Knowledge of various Virtualization Environments. * Knowledge of Security Solutions like EDR, Email filtering, Vulnerability Scanners etc. * Familiarity with Active Directory, Kerberos, and authentication mechanisms * Problem\-solving skills to identify issues with systems * Communication with other teams to resolve issues * Communication with vendors related to maintenance of the SOC Systems **Required certifications:** * System administration (IBM, Microsoft, Vmware, Nutanix..etc.) * Industry certifications (CompTIA, ITIL 4 Foundation... Etc)
