SOC Analist

PUB307835

Over deze baan

  • Markt: Services
  • Branche: IT & Telecom
  • Expertisegebied: Netwerk, Systemen, Telefonie & Hardware
  • Standplaats: Amsterdam

Vereisten

  • Uren per week: 40
  • Opleidingsniveau: Hbo
  • Sluitingsdatum: zondag 18 juli 2021

Functieomschrijving

Functieomschrijving

"This organization is seeking a Cyber Security Analyst in Amsterdam to work on the Cyber Security Rapid Response Team - Security Monitoring, Forensic and Threat Intelligence function. This position
requires a motivated fast learner, who can work within the Rapid Response function to identify,
analyze, and remediate potential threats to the environment. The candidate will require security
industry knowledge that evolves with current and emerging threats, as well as an ongoing
understanding of key business and technological processes. This position will report to the Threat
and Response Lead of Information Security.

This role will perform security monitoring, investigations and perform analysis of events in order to
thwart internal and external threats to the environment. Additionally, will collaborate on an ongoing
basis with the Cyber Security Rapid Response Incident Response Team and Managed Security Service
providers to support detection, triage, incident analysis, containment, remediation and reporting of
events/incidents while coordinating, balancing business priorities, emerging and actual threats and
best practices to ensure the confidentiality, integrity and availability of information assets. "
Our mission is to secure and protect our organization, our brand, and our clients. The Enterprise & Technology Security organization is responsible for managing the cybersecurity landscape and protecting both this organization and our clients in a volatile security environment. Our scope includes the internal systems and the products and offerings we deliver to customers.

Vereisten

Vereisten

Security Monitoring

• Assist in establishing Global Security Monitoring discipline to support enterprise

• Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS),
Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR) and other
security threat data sources.

• Respond in a timely manner (within documented SLA).

• Document actions in cases to effectively communicate information to internal stakeholders as well
has for historical retrieval.

• Adhere to policies, procedures, and security practices

• Resolve problems independently and understand escalation procedures.

• Conduct Security Monitoring activities to provide Security in Depth visibility into potential known
and unknown threats that may pose risk to the environment.

• Participate in security incidents and act as the technical Subject Matter Expert during significant
security incidents.

• Utilize analytics to identify potential threats to the environment.

• Detect, respond, mitigate, and report on cyber threats/incidents that may impact the
environment.

• Collaborate with technical leads: Engineering, Operations, Service Desk, Applications and BISOs on
matters related to security monitoring across global footprint.

• Collaborate and serve as liaison to Managed and/or Unmanaged Security Service providers.

• Conduct Operations surrounding cyber security incident response technologies including network
logging and forensics, security information and event management tools, security analytics
platforms, log search technologies, and host based forensics as applicable.

• Act as an internal information security consultant to the business and technology units, advising on
risks, threats and control practices related to Rapid Response.

• Assist in development and knowledge sharing within the team.

• Assist in security console tuning

• Assist in security event oversight to ensure the team is delivering a quality product
• Identify and share threat intelligence that impacts the organization and their customers or products

• Perform threat hunts that target adversary TTPs
Required Technical and Professional Expertise

• Minimum 3+ years of experience working within a SOC, Threat Hunt, or Threat Intel team

• Critical thinking and problem-solving skills

• Passion for information security and data security

• Strong written/verbal communication skills

• Strong interpersonal and organization skills

Preferred Technical and Professional Expertise

• Practical experience with TCP/IP networking

• Experience with Linux, Windows, iOS, and Network Operating Systems

• Experience with EDR and SIEM technologies.

• Working knowledge of Routing and Access Control Devices

• Industry related certifications: Security+, C|EH, GSEC, etc.

Sollicitatieprocedure

1

Wij nemen jouw sollicitatie in behandeling en gaan jouw profiel bekijken. Binnen twee weken laten wij je weten of we je uitnodigen voor een interview.

2

Goed nieuws! Wij zien mogelijkheden voor jou en nodigen je uit voor een (telefonisch) interview.

3

Dat gaat de goede kant op, want naar aanleiding van het (telefonische) interview zijn we allebei nog steeds enthousiast.

4

Dit kan twee dingen betekenen: we gaan je voorstellen aan een van onze opdrachtgevers óf we doen je meteen een aanbieding!

Start jouw sollicitatieprocedure nu

Start jouw sollicitatieprocedure nu

Solliciteren naar deze functie is snel en gemakkelijk. Het enige wat je hoeft te doen is je cv of LinkedIn-profiel uploaden!

Solliciteer

Contactgegevens vacature

Heb je vragen over deze vacature? Stel ze aan je toekomstige Consultant, Miranda Bink. Gebruik hierbij het volgende vacaturenummer:
PUB307835

Consultant

Miranda Bink
Brunel Netherlands Utrecht
m.bink@brunel.net
+31 30 272 7440