Job Description SOC Analyst
Position Description
If you have an inquisitive nature and enjoy security technology, research, and learning, this role will put you at the forefront of CGI Cyber Security Service. The Security Operations Centre is a fast-paced environment that is flexible and adaptable to the threat landscape we face. The SOC utilises both tried and tested tooling and state-of-the-art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients.
Your future duties and responsibilities
You will be highly motivated, with a good IT background, have a desire to work in Cyber Security with some previous experience of working within a SOC environment. A self-starter who works effectively with instruction but under minimal supervision in a highly dynamic environment. It is expected that you will have a solid background in IT infrastructure with an understanding of computer networking and server architecture, ready to take the next step in Cyber Security.
This role involves:
1. Detection, monitoring and analysis of security incidents.
2. Production of the monthly service reports.
3. Assist Senior Analysts to perform network/system/application/log intrusion detection analysis.
4. Assist Senior Analysts to ensure that Service Level Agreements are met and assist in the maintenance of SOC Documentation.
Required qualifications to be successful in this role
We're looking for a range of the following skills and experiences:
* Have an inquisitive nature and enjoy security technology research and learning.
* Characteristics of a team player, good time-management, organisational, troubleshooting, reasoning and problem-solving skills.
* Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP.
* Ability to deal with aggressive timelines and the associated pressure.
* Ability to speak and communicate effectively with peers and management.
* Previous experience within a SOC focused role.
Desirable skills and experiences
Any of the following would be useful, but not essential:
* Experience in security compliance auditing and remediation.
* Knowledge of SIEM Solutions (ArcSight, Splunk, TippingPoint, Huntsman, FortiAnalyzer).
* Knowledge of Firewall & VPN technologies (Checkpoint, Cisco, Juniper).
* Knowledge of IPS vendors (SourceFire, Cisco, IBM, TrendMicro, Fortigate, F5).
* Knowledge of strong authentication such as two-factor authentication tokens, Public Key Infrastructure (PKI), endpoint security tools such as HIPS, personal firewalls, anti-virus, anti-malware, Internet browser and traffic policy enforcement such as URL and web content monitoring and filtering, Database Activity Monitoring (DAM), Data Loss Prevention (DLP) and Web Application Firewalls.
Skills
* Dev/Tools Infrastructure Supp
* Network Security
* Security Infrastructure Support
* Security Operations Center
Reference 1052446
#J-18808-Ljbffr