SOC Analyst

SOC Analyst

DXC Technology
4-7 years
Not Specified

Job Description


Job Description:
  • Acts as functional escalation workgroup for CTAC (Cyber Threat Analysis Center) Tier 1. Responsible for second line INCM escalation for resolution
  • Receives and acknowledges Incidents for clients and services in scope through CTAC Tier 1
  • Where contracted, facilitates security incident response according to industry standards.
  • Provides 8x5 shift and 24x7x365 standby for security operations services
  • Monitors managed environments primarily through Security Information and Event Management (SIEM), utilizing a 'single pane of glass' approach where supported, and through service delivery tools reporting to the SIEM (log sources) for each SOC service in scope, including but not limited to Intrusion Detection and Prevention Systems (IDS/IPS), Endpoint Security, Firewall, Proxy, and Advanced Persistent Threat (APT) solutions
  • Responsible for the advanced analysis of extracted log files
  • Responsible for advanced monitoring of infrastructure health, performing troubleshooting to the extent permitted by the access granted to CTAC and collaborating with CTAC Tier 3 and Security Engineering where functional escalation is required
  • Responsible for evaluating the suitability and relevance to current operations of existing content, definitions, and signatures as appropriate for the service delivery tools in scope, such as SIEM, IPS, and endpoint security system
  • Responsible for logging tickets to vendors and liaising with them on a 24x7x365 basis, assisting CTAC Tier 3 analysts with vendor interfacing outside of office hours
  • Responsible for performing advanced analysis on reports
  • Acts as a mentor to CTAC Tier 1 analysts
  • Responsible for threat intelligence research and working with CTAC Tier 3 to ingest relevant feeds into SIEM systems
  • Responsible for research into and the publication of security advisories and other white papers for the benefit of the wider DXC Security community

Key Skills:
  • Minimum 4 years professional experience in IT, including experience in Information Security.
  • Solid knowledge of Information Security principles and practices, able to use these effectively Security Analysis.
  • Broad understanding of IT Security principles .
  • Has technical and product experience in at least 2 of the following solution types: anti-malware, vulnerability management, audit logging/SIEM, compliance, hacking tools, and network security/intrusion prevention.
  • Has solid infrastructure knowledge and experience, with fluency in server and other platform technologies (Windows and Linux).
  • Experience of working within service delivery frameworks, such as ITIL.
  • Analysis, problem solving, and business relationship skills.
  • An understanding of current legislation and precedence governing IT.
  • Good interpersonal and consultative skills.
  • Ability to work independently and manage multiple projects and task demands effectively.
  • Good analytical skills.
  • Solid writing and communications skills.
  • Experience of working in a service provider context, understanding and practicing effective operating relationships with customers and other entities.
  • A team player

Desirable:
  • Bachelors or Masters degree, preferably in technical discipline or field (computer science, IT etc)
  • CISSP, GSEC or GCIH certifications
  • ECSA, CHFI, CEH, or ECIH certifications
  • Knowledge of ISO 27001 standards
  • Experience or formal training in security technologies, with preference for experience with SIEM Solutions (Arcsight, SPlunk, QRadar or LogRhythm), Endpoint Protection (Symantec, Trend Micro, Microsoft, McAfee), IPS (McAfee, Trend Micro, Cisco) and other vendor security solutions

Job Details

Employment Types:

Industry:

Function:

IT

DXC Technology (NYSE: DXC) helps global companies run their mission critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world's largest companies and public sector organizations trust DXC to deploy services across the Enterprise Technology Stack to drive new levels of performance, competitiveness, and customer experience. Learn more about how we deliver excellence for our customers and colleagues at DXC.com .

Similar Jobs

People Also Considered

Career Advice to Find Better

Simple body text this will replace with orginal content