Description

• Monitors security incident and event management (SIEM) and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises
• Assists with triage of information security service requests from customers and internal teams

Sobre o nosso cliente

Our Client is a Multinational Company that operates in the Pharmaceutical Industry.

Principais responsabilidades

• Monitors security incident and event management (SIEM) and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises
• Assists with triage of information security service requests from customers and internal teams
• Escalates cyber security events according to Lowe's Incident Response Plan
• Assists with containment of threats and remediation of environment during or after an incidente
• Documents event analysis and writes comprehensive reports of security incident investigations
• Collaborate with technical teams to identify, resolve, and mitigate information security events
• Supports SOC Tier III functions such as threat intelligence, threat hunting, attack surface management and investigations as needed
• Maintain an awareness of information security news and trends

Perfil desejado

• SIEM Administration (Splunk, HP ArcSight)
• Vulnerability Management technologies (Nessus, Qualys Rapid7)
• Log Management
• Endpoint Protection
• Antivirus (McAfee, Sophos)
• Perimeter Security including Firewalls, WAF, IDS & IPS
• Proxy Services (Zscaler, Bluecoat)
• Domain/DNS Management
• SSL Certificate Management
• DLP (Symantec DLP, McAfee DLP)
• PAM / IAM
• Knowledge of authentication such as LDAP and MS Active Directory and Kerberos

Benefícios adicionais

Career progression.

Candidate-se através do website