You are currently viewing Security Operations Centre (SOC) Analyst at DTB Bank June, 2023

Security Operations Centre (SOC) Analyst at DTB Bank June, 2023

Share with your loved ones!


Job Purpose

The main purpose of the SOC Analyst L2 is to deal with the security incidents which are
detected and to lead in-depth analysis on these incidents.

Key Responsibilities:

  • Investigates deeper on the detected behaviors when an incident is escalated by the
    SOC level 1 analyst.
  • Add context to the incident to understand the behavior, analyzing data from multiple
    tools and data sources.
  • Participates to the crisis management by providing support to the incident handler
    and the SOC Level 3 analysts.
  • Create reports and visualizations of security attacks.
  • Works on the decrease of false positives.
  • Maintain the detection rules database.
  • Vulnerability Assessment and Penetration testing.
  • Threat Hunting and Threat Intelligence.
  • Any other Cybersecurity tasks given by the line manager.

Qualifications

  • University degree Computer Science and other ICT related courses.

Work Experience

  • At least 3 years working experience in SOC/Cybersecurity.
  • Proficient in Incident Management and Response.
  • In-depth knowledge of security concepts such as cyber-attacks and techniques,
    threat vectors, risk management, incident management etc.
  • Able to work in a 24×7 Security Operation center (SOC) environment.

 

Personal Attributes

  • Strong Data Analysis Skills.
  • Solid Sense of Logic.
  • Ingenuity
  • Skilled Problem Solver
  • Orientation to Detail
  • Independent and critical thinker, yet an achiever and implementer.
  • Strong ethic
  • Lead by example

Key Performance Indicators

  • Number of Total Alerts: How many alerts have been received.
  • Number of Reported Incidents: How many incidents are reported within a certain
    timeline.
  • Number of Open Alerts Escalated: How many open alerts were escalated further.
  • Number of devices being monitored: How many devices are being monitored.
  • Number of events per analyst: How many events were addressed by an analyst.
  • Number of false positives alerts: How many false positive alerts did SOC encounter in
    a week/month.
  • Mean Time to Detect (MTTD): How long it takes to become aware of a potential
    security incident.
  • Mean Time to Respond (MTTR): How long is it taking to resolve an actual security
    incident.
  • Mean Time for Investigation: How long is it taking to complete an investigation
    process.

Performance Evaluation: June & December.

Applications should be submitted to:
[email protected]

DTB is an equal opportunity employer.



Source link

Share with your loved ones!

Leave a Reply