Beschreibung
For our customer we are looking for a Network Security Analyst (m/w) for supporting the Security Operation Centre. The Analyst works as part of a team to provide 24/7 operational support on one or more customer's networks perimeters within the Security Operations Centre.As level 1 analyst, you will have to collect, to acknowledge, to analyze, to notify and to escalate security incidents, providing high grade customer service at all times.
You will have to follow the incident management process, in a constraint time period for the respect of the committed service level agreement.
You will have to participate to the continuous service improvement and to provide performance metrics, and to share with the team your experience and knowledge.
Centre.
The Security Analyst will be required to accommodate flexible working hours and shifts over a 24*7*365 rotation.
required: Ü2 certified
- Monitors alerts, events and incidents identified through security event management tool
- Leverages standard supporting tools to perform initial triage of incidents identified through security event management tool.
- Differentiates false positives from true intrusion attempts or dangerous or suspicious behaviours
- Collects information in support of the L2 analysts issue escalation and the resolution process
- Escalates alarms to L2 analysts whenever it is needed
- Opens, tracks, and closes trouble tickets resulting from triage and investigation in the ticketing tool
- Places outgoing phone calls and email and act according to security incident management procedures and processes
- Logs requests when the SOC receives incoming phone calls from customers
- Produces daily reports
- Tracks trends for metrics and reporting
- Able to create reports and visualizations of security attacks on an ad-hoc basis using defined tools
- Performs tasks as identified in a daily task list.
- Actively investigates the latest in security vulnerabilities, advisories, incidents, and penetration techniques and responsible of the customer’s notification when appropriate
- Possess an Information Security and operational oriented mindset
- Provides feedback for the development of future goals and objectives for the department and services
- Participates in the improvement and development of process/procedure manuals and documentation
- Due the 24x7x365 nature of SOC operations, there is the possibility that operators will be required to work alternate shifts, including nights and weekends.
- Accurately reports time
- Accurately follows department procedures.
- Follows department processes for balancing schedule, scope and budget within the department
- Can work independently to perform analyses, triage, and investigations
- Ability to determine key issues and follow appropriate action plans
- Participates in knowledge sharing with other analysts
- Coordinates or participates in individual or team projects
- Writes technical articles for internal knowledge base
- Follows department quality assurance plan
- You have basic knowledge of ICT networks and are a beginner in the field of remote service delivery and IT operations.
- experience with Cisco, Juniper, Bluecoat
- You have a strong interest and a good background of Cyber Defence field
- You have a successful experience of a mission where following process and knowledge sharing within a team spirit were key points.
- A recent graduate or equivalent in IT
- An active interest in cyber defence and secure information system and system security architecture.
- Experience in network and systems monitoring
- Rigorous and respectful of process. Strong attention to detail.
- Strong time management skills with the ability to multitask
- Excellent verbal and written communication skills
- Knowledge of information technology concepts and technologies
- An understanding of Information Security; relating to the Confidentiality, Integrity and Availability of information.
- Fluent German and English
If interested we look forward to your current profile in Word format (no PDF)! Reference :J098304 Duration :12 MM Location : Raum München Languages : Fluent German and English emagine GmbH Eckert, Janina T : F :