SOC Engineer

Minimum Requirements
➢ University degree in any field related to Information Technology
➢ Minimum 5 years’ experience focused in the IT Security field (e.g. Incident Response, Incident Investigation, Incident Remediation)
➢ Minimum 3 years’ experience in managing and administering a SIEM tool (e.g. ArcSight, LogLogic, enVision, Q1 Labs, McAfee ESM, etc.) and minimum 2 years’ experience in managing and administering a Vulnerability Management tool (e.g. Tripwire IP360, Qualys, Nessus, etc.)
➢ Minimum 3 years’ experience in developing Use Cases and creating Correlation Rules
➢ Minimum 3 years’ experience in hands-on security incident investigations (e.g. System and network compromise/breach, exploitation of vulnerabilities, etc.)
➢ Minimum 5 years’ experience in administering or managing Security Solutions such as Endpoint Security, Web and Email Filter, APT, etc.
➢ A solid understanding of Information Security concepts; relating to the Confidentiality, Integrity and Availability of information
➢ A solid background on various IT systems such as Windows, Linux, Network and Security devices especially pertaining to logs generated in relation to security monitoring
➢ A sound knowledge of IT security best practice, common attack types and detection / prevention methods
➢ An excellent communicator at all levels
➢ Strong written and verbal communication skills
➢ Hands-on experience in creating custom detection signatures in a SIEM solution
➢ A strong background in SIEM and VM technology architecture and deployment
➢ An active interest in Cyber Security, incident detection, network and systems security