SOC Lead
Share
Job Location:
San Jose, CA - USA
Monthly Salary:
Not Disclosed
Posted on:
11 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Title: SOC Lead
Location: San Jose CA
SOCLead engineer based out of our San Jose below is the JD for the same - we need a person with around 5-10years of relevant experience
Key Responsibilities for Security Operations Engineer
Monitor security alerts from various security tools (SIEM DLP EDR IDS/IPS firewalls etc.).
Detect potential security incidents such as unauthorized access malware activity and
abnormal behavior.
Review and analyze security event logs and alerts to identify security threats.
Triage the incidents to determine their severity and impact.
Follow defined workflows and playbooks to respond to security incidents.
Maintain and update incident logs and tracking systems across SIEM and ITSM.
Escalate unresolved / complex incidents that require further investigation or specialized
skills to L2 / Incident response teams.
Collaborate with clients other IT teams (e.g. network systems and application teams) to
resolve security issues.
Assist with the identification of security vulnerabilities in systems networks and
applications. Perform vulnerability scanning through tools. Assist with the closing of
vulnerabilities.
Monitor the health and status of security systems including firewalls anti-virus software
and endpoint protection.
Generate daily weekly or monthly reports on security incidents and activities for senior
management Document security incidents and actions taken in accordance with incident
response policies.
Location: San Jose CA
SOCLead engineer based out of our San Jose below is the JD for the same - we need a person with around 5-10years of relevant experience
Key Responsibilities for Security Operations Engineer
Monitor security alerts from various security tools (SIEM DLP EDR IDS/IPS firewalls etc.).
Detect potential security incidents such as unauthorized access malware activity and
abnormal behavior.
Review and analyze security event logs and alerts to identify security threats.
Triage the incidents to determine their severity and impact.
Follow defined workflows and playbooks to respond to security incidents.
Maintain and update incident logs and tracking systems across SIEM and ITSM.
Escalate unresolved / complex incidents that require further investigation or specialized
skills to L2 / Incident response teams.
Collaborate with clients other IT teams (e.g. network systems and application teams) to
resolve security issues.
Assist with the identification of security vulnerabilities in systems networks and
applications. Perform vulnerability scanning through tools. Assist with the closing of
vulnerabilities.
Monitor the health and status of security systems including firewalls anti-virus software
and endpoint protection.
Generate daily weekly or monthly reports on security incidents and activities for senior
management Document security incidents and actions taken in accordance with incident
response policies.
Required Skills:
SIEMDLPEDRFirewallsIDSIPS
Key Skills
- Administrative Skills
- Facilities Management
- Biotechnology
- Creative Production
- Design And Estimation
- Architecture
