SOC Engineer

Must have experience:

Experience in Highly available 24x7x365 Enterprise Operational Environment

Must have strong critical thinking and analysis skills.

Must be a strong communicator both verbally and through text.

Effectively gather and analyze data for evidence of a loss of Confidentiality, Integrity, and Availability.

Mature understanding of industry accepted standards for incident response actions and best practices related to SOC operations.

In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, and incident management.

Should have experience creating automations for SIEM/SOAR tools and general security operations.

Proven success in working SOC function/team, including (but not limited to):

Experience creating and maintaining metrics, reporting and SLAs

Security operations experience with operating systems, cloud infrastructures and services (Azure/AWS) and customer-facing web applications

Familiarity or experience with Intelligence Driven Defense, Cyber Kill Chain methodology, as well as the NIST and MITRE Telecommunication&CK framework s .

Strong analytical skills and attention to detail with thorough documentation skills.

Experience with enterprise architecture and infrastructure including, but not limited to servers, network appliances, databases, and system administration/management.

Ability to research, analyze, and resolve complex problems with minimal supervision and escalate issues as appropriate

Experience with a SIEM and a SOAR such as Azure Sentinel is required.

Industry-standard certifications such as SANS Certified Incident Handler, Malware Reverse Engineer, Forensic Investigator, Intrusion Analyst, or CISSP are valued.