Security Operation Specialist

Overview

A specialist who monitors networks, computers, and applications looking for events and traffic indicators that signal intrusion or indicators of compromise. Triages security alerts and responds according to published protocols.

He is responsible for evaluating security logs for new technologies, defining how the logs must be parsed to make them usable for detection rules on the SIEM platform and writing new detection rules. Uses big data platform for deep data mining of indicators of compromise.

He is also responsible for the analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks), investigates available tools and countermeasures to remedy the detected vulnerabilities, and recommends solutions and best practices. Applies security patches to remediate vulnerabilities.

Functions and Responsibilities

• Senior Security Operations (SecOps) Analyst
• Security Information and Event Management (SIEM) Engineer/Security Orchestration and Automated Response (SOAR) Engineer
• Threat Intelligence Analyst

Employment Standards

Experience:

• 1-year experience in the specific field,
• or 2-3 years experience in a related field

Job Skills & Qualifications

Educational Background:

• College degree in Computer Engineering, Information Technology, Software Engineering,

Cybersecurity or related field

Certification in the following or related fields is a plus:

• CCNA Security: Cisco Certified Network Associate Security

• CCNP Security: Cisco Certified Network Professional Security

• Fortinet Network Security Eng'r (NSE)

(with a college degree in Computer Engineering, IT, or Cybersecurity)