28 Nov 2024
SOC
The Level 2 SOC Analyst will perform analysis regarding potential Cybersecurity Threats, serving as an escalation point for incidents affecting the client. This includes identifying the type of incident, determining the severity of the attack, and applying incident response measures based on Playbooks. Working with the SOC team, the Level 2 Analyst will suggest the appropriate actions for containment and eradication of security incidents, in a timely and accurate fashion.
Furthermore, the Analyst should be up to date with the current trends regarding active exploitations, vulnerabilities, and attack methods to create detection rules proactively.
Key Responsibilities
- Assist and mentor L1 Analysts on triage
- Perform tier 2 incident analysis and response for escalated incidents
- Communicate with SOC management, senior SOC staff members and customers regarding investigations and status updates
- Design, create and maintain custom SIEM content (creation, evaluation and tuning of rules, reports, dashboards, etc.)
- Design, create and maintain custom tools that support incident handling and response activities
- Responsible for the continuous availability and support of the on premise and cloud SOC infrastructure
- SOC infrastructure design, implementation, maintenance, and supportManage system health and capacity utilizing monitoring tools
- Development and improvement of manuals and documentation (deployment and configurations guides, troubleshooting guides, technical articles, etc.)
- Interface regularly with the SOC Manager to provide feedback on SOC operations
- On-call support during non-business hours
Qualifications
- Bachelor’s Degree in Computer Science or related technical discipline, or the equivalent combination of education, professional training, or work experience
- Minimum of 1 year as a Level 1 SOC Analyst
- Demonstrated experience in a SIEM product
- Significant experience performing analysis of logs from a variety of sources
- Experience with packet analysis and malware analysis
- Knowledge of current security trends, threats, and techniques
- Experience with scriptingGood verbal and written communication skills (Greek and English)
- IT Security Certifications (GCIH/GCIA/CEH/CISSP), product certifications such as SIEM certifications or ability to obtain via self-study within one year of hire date
- Experience in Test Automation Practices
- Exceptional Communication and Presentation skills
What we offer
- Competitive Salary
- Private Medical & Health Insurance
- Performance Bonus
- Laptop
- Phone - Mobile Plan
- Training & Development
- Pension Fund