Description:
Security Operations Analyst II is a part of high impact security operations team focused on protecting Diligent personnel, sites and assets worldwide. As part of the Security team, you will help to with the strategy, development, and deployment of a comprehensive physical and logical security operation programs. The position is responsible for oversight and operations on security event monitoring, incident response, user behavior analysis, threat hunting, in addition to maintaining the confidentiality and integrity of customer, employee, and business information in compliance with organization, industry, and regional policies and standards.
Key Responsibilities
- Actively monitor and respond to security alerts from tools such as SIEM, EDR, CNAP, etc.
- Analyze security alerts and document tuning opportunities to reduce false positives.
- Support change management responsibilities to reduce security risk/impact to corporate systems and networks.
- Contribute to security tooling policies and supporting process enhancement as needed to mature defense controls and facilitate exceptions for BAU operations.
- Initiate and coordinate incident response activities. Maintain documentation and reports for compliance purposes.
- Configure and run network and endpoint vulnerability scans. Closely collaborate with technical teams to mitigate risks through patching and configuration changes.
- Assess and evaluate the suitability of existing and new security tools to bolster the organization’s security posture
Required Experience/Skills
- 3-5 years of information technology experience or the equivalent combination of education, technical training, or work experience.
- Working experience in information security, especially on a Computer/Security Incident Response Team (C/SIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC)
- Working experience with regulatory compliance and information security management frameworks.
- Strong decision-making capabilities.
- Technical knowledge of anti-virus solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns.
Preferred Experience/Skills
- Must have strong interpersonal skills with the ability to interact with customer’s technical, non-technical easily and effectively, support, and business staff at all levels.