Job Description
We are looking for an experienced and capable Tier 2 security analyst at NOC who will directly address complex crises and respond to security incidents with deeper analysis. This position is ideal for individuals who are interested in advanced application analysis, identifying TTPs, and working with advanced security tools.
Requirements:
- Mastery of security incident analysis and response (incident response).
- Familiarity with threat-hunting methods.
- Mastery of log and functional analysis in Windows, Linux, and network.
- Familiarity with SIEM, especially Splunk, and the ability to write Queries, develop Use Cases, and set Correlation Rules Mastery with traffic analysis tools and network attacks Zeek, Suricata, Wireshark.
- Ability to identify and identify analyst techniques based on MITRE ATT&CK.
- Familiarity with advanced threat frameworks (APT) and TTP.
- Ability to manage SOC processes, incidents, and basic-level forensics.
- Working with Threat Intelligence tools and IOC analysis.
