Overview
Responsibilities:
- Monitoring of security alerts and events in SIEM, EDR and other platforms
- Process and respond to login alerts by distinguishing the real one from the fake one and reducing the number of latters
- Study and resond to indicents, document all the steps
- Verify and process the results of vulnerability scanning, take part in solving the issues if necessary
- Perform Threat intelligence and integrate it with internal data flows to detect emerging and newly developing threats
- Contribute to the development and maintenance of SOC playbooks, logs, and standard operating procedures
- Draw up periodic summaries and reports
Required Qualifications:
- General knowledge on Cloud security
- Planning and reporting skills
- Familiarity with access and account management concepts (Active Directory, LDAP)
- General knowledge about threat vectors and techniques - phishing, credential stuffing, lateral movement, privilege escalation, ransomware, C2 frameworks
- Familiarity with various operating systems and their logging features (Windows, Linux, FreeBSD)
- Knowledge of the basics of network technologies (TCP/IP, DNS, VPN, OSI model, routing, switching)
- Experience with mail security and sandbox detonation
- Knowledge of scripting languages for automation or data analysis purposes ((Python, PowerShell, Bash and etc)
Nice To Have:
- Knowledge of verifying malicious software
- The presence of relevant professional trainings and certificates
- Work experience in financial and banking field
- The knowledge of security and banking standards
Note:
✨ Our intelligent job search engine discovered this job and republished it for your convenience.
Please be aware that the job information may be incorrect or incomplete. The job announcement remains the property of its original publisher. To view the original job and its full details, please visit the job's URL on the owner’s page.
Please clearly mention that you have heard of this job opportunity on https://ijob.am.
