SOC Engineer
Eridanus Software Solutions
Oman - Oman
منذ 6 يوم
source : HireeJobsGulf

We are looking for SOC Engineer Responsibilities Monitor level 1 engineer performance by investigating incoming events using CDCavailable tools Ensure level 1 event s are addressed in a timely manner using available reporting and metrics Approve and if necessary further investigate level 1escalated events Mentor level 1 engineers to improve detection capability within the CDC Manage SOC event and information intake to include gathering intelligence reports monitoring ticket queues investigating reported incidents and interacting with other security and network groups as necessary Serve as detection authority for initial incident declaration Function as shift subjectmatter experts SMEs on incident detection and analysis techniques providing guidance to junior engineers and making recommendations to organizational managers Conduct security research and intelligence gathering on emerging threats and exploits Serve as a backup engineer for any potential coverage gaps to ensure business continuity Acts as subject matter expert on network endpoint threat intelligence forensics and malware reverse engineering etc Periodic review and update false positive database knowledge base Maintain review update SOP Process documents UseCase Design Programming and scripting experience in splunk Understanding of splunk architecture in clustered environment Deep knowledge on the Security operations related usecases Extensive forensic experience threat analytic capabilities Design implementation and management of Standard Operating Procedures SOP as well as service improvements Deep technical skills of TCP IP network system administration as well as event log analysis Have familiarity with at least 1 MAC OEM Vendor Systems Emerson Honeywell SEInvensys Yokogawa and other 3rd Party Systems GE System1 PI SCADA HMI etc Possess indepth understanding of PCD environment such as experience in PCD industrial network protocol i e OPC MODBUS HART etc Be an expert in deepdive Incident Analysis in OT ICS Environment or been a part member of Information Security Incident Response Team and in charge of reporting of any security incident Have worked in Industrial environment either Onshore or Offshore Plant sites Capable of making use of Splunk enterprise security

بلغ عن هذه الوظيفة

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.

قدِّم طلب ترشيحك
بريدي الالكتروني
بالضغط على "واصل" ، أعطي موافقة neuvoo على معالجة بياناتي وإرسال تنبيهات إلي بالبريد الإلكتروني ، على النحو المفصل في سياسة خصوصية لـneuvoo . يجوز لي سحب موافقتي أو إلغاء الاشتراك في أي وقت.
استمارة الطلب