Security Analyst, Technology
Security Analyst, Technology
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Our professionals balance analytical skills deep market insight and independence to deliver solid defensible analysis and practical advice to our clients. As an organization we think globally. We create transparency in an opaque world and we encourage our people to do the same. That means when you take your place on our team youll discover a supportive and collaborative work environment that empowers you to excel. If youre ready to share your perspective with the world then you can make a real impact here. This is the Krolls difference.
Krolls Security Operations Center helps firm manage cybersecurity risks at every stage of preparedness by identifying vulnerabilities and readiness through a comprehensive gap analysis and risk assessment; implementing best practices to avoid compromise; and recovering from cybersecurity attacks.
At Kroll your work will help protect restore and maximize value for our clients. Join us and together well maximize the value of your career.
Security Operations Analyst
We are seeking candidates for a 24/7 security operations team. Candidate will be responsible for monitoring security events and alerts for potential malicious behaviors and evaluating the type and severity of security events by making use of packet analyses and an in-depth understanding of exploits and vulnerabilities and providing incident response and escalation to the incident response team.
RESPONSIBILITIES:
- Use SIEM technologies and other native tools to perform the monitoring of security events on a 24x7 basis.
- Manage inbound requests via the ticketing system as well as via telephone calls and provide security notifications via three methods: logging incident tickets sending emails and placing telephone calls.
- Perform analysis on logs produced by network devices utilized within the infrastructure such as firewalls content filtering syslog from various sources/devices assorted Intrusion Detection capabilities substantiating vulnerability scanner results directory services DHCP logs Secure Email Gateway logs and approved applications.
- Use the SIEM to monitor security events and perform analysis while integrating the results and information needed to proactively protect the enterprise.
- Provide security events analysis and support to include identifying potential threat anomalies and infections documenting findings providing recommendations within the incident management system performing triage of incoming security events performing preliminary and secondary analysis of those events and validating the events.
- Provide cybersecurity root-cause analysis in support of any tickets for which it fails to meet the Acceptable Quality Levels. This root-cause analysis will include documenting recommendations for corrective action.
REQUIREMENTS:
- Bachelors degree or equivalent in Computer Science Systems Engineering Cybersecurity Information Technology or related area.
- Minimum 4 years of monitoring experience in Cyber Security Operations Center.
- Excellent technical experience and expertise in troubleshooting Microsoft products and Operating system (desirable knowledge of MAC OS & Linux).
- Understanding of basic network services TCP/IP IP Routing attacks exploits and vulnerabilities.
- Experience with VPN SSL other encryption methodology / technology a plus.
- Working knowledge of policies procedures and protocols of Security Operations Center.
- Experience using numerous security tools and technologies to include some of the following technologies: SIEM IDS/IPS Web application firewalls Antivirus Proxy and Url filtering DLP Vulnerability scanner.
DESIRED CERTIFICATIONS:
- CompTIA Security
- Certified Ethical Hacker (CEH)
- GIAC Certified Incident Handler (GCIH)
- Certified SOC Analyst (CSA)
- Microsoft Certified: Security Operations Analyst Associate
In order to be considered for a position at Kroll you must formally apply via
Kroll is committed to equal opportunity and diversity and recruits people based on merit.
#LI-TL
Required Experience:
IC
Employment Type
Full-Time
