SOC Analyst
NIPA Technology Co., Ltd.
- ไทย
- งานประจำ
- ฟูลไทม์
- Determine security violations and inefficiencies by conducting periodic audits
- Respond to security incidents promptly, investigate breaches, and implement measures to prevent future occurrences
- Monitor threats (Tactics, Techniques, Procedures (TTPs), threat actor groups) andmaintain a threat landscape for the Information System
- Build and manage the lifecycle of the SOC playbooks and processes
- Respond to alerts coming from our managed services or directly from our tools
- Perform incident response and forensics, identify and solve potential and actualsecurity problems
- Keep users informed by preparing performance reports; communicating system status
- Assist the SOC manager in coordinating alerts and incidents handling with allstakeholders and partners
- Conduct regular Threat Hunting activities and develop a threat hunting program
- Implement and maintain security controls
- Assist the team in implementing a detection engineering methodology
- Assist the whole team on other subjects and tools related to Cyber Security
- Advise on and enforce the security policies across the group
- Assist the Vulnerability engineers to proactively identify and address potentialweaknesses
- Help developing a purple team activity with the offensive security team
- Contribute to team effort by accomplishing related results as needed
- Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience
- Hands-on experience analyzing high volumes of logs, network data and other attack artifacts
- Experience with vulnerability scanning solutions
- Proficiency with antivirus and security software
- At least three years as a security analyst in SOC with hands on experience in a Tier I/Tier II team
- Ability to analyses complex issues and quickly devise effective solutions fitting the business context
- Attention to details
- Excellent communication skills to convey technical information to both technical and non-technical stakeholders
- A problem-solving mindset with a proactive approach to identify and address security challenges
- Strong teamwork and collaboration skills to work effectively across departments
- Eagerness to stay updated with the latest security trends and technologies
- Mandatory experience with SIEM, and alerts from proxies, email gateways and EPP/EDR
- Mandatory experience in log and alerts analysis, threat hunting and incident response methodologies
TechStar