Cybersecurity Defense Expert - SOC L3

Company Overview:

Advanced technology and cybersecurity company (sirar) established by stc, the regions ICT and digital services provider, sirar by stc is a cutting-edge cybersecurity provider that empowers organizations to take control of their cyber capabilities and digital environments.

As experts in business security and privacy, we offer a comprehensive range of solutions that help you to operate online safely, securely, and efficiently. The tools we provide help organizations detect and prevent cybersecurity attacks, safeguard their digital future, and provide protection and security from that point forward.

Key Responsibilities:

1. Provides proactive defense intelligence and insight of advanced threats.
2. Monitors, analyzes, and reports malicious activity in clients' networks.
3. Supports onboarding of new managed security services and clients onto the SOC infrastructure.
4. Performs 24x7 monitoring and detection for cybersecurity incidents from a Security Operation Center.
5. Provides inputs to customers on security maturity, good practices, and current threats.
6. Actively researches the threat landscape for potential threats and develops threat hunting scenarios.
7. Oversees technical operations, assessing and continually improving output and ensuring processes are developed.
8. Develops and maintains information security metrics.
9. Monitors and manages customer SLA compliance for SOC.
10. Handles tickets for subscribed customers on required alerts.
11. Contributes to the overall success of the company by performing all other duties and responsibilities as assigned by the line manager.

Qualifications:

1. Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related discipline.
2. Master's degree in Cybersecurity, Computer Science/Information Technology, or related discipline is preferred.

Professional Certifications Preferred:

1. Professional certificates such as the below are preferred:
2. Certificate in CISSP/GSEC/GCIH/ECIR/ECDF/ECTHP/GCTI/CDFP/GMON.

Years of Experience:

1. A minimum of 7 years of relevant experience.

Skills:

1. Advanced proficiency in recognizing vulnerabilities in security systems.
2. Advanced proficiency in using intrusion detection technologies to detect host and network-based intrusions.
3. Advanced proficiency in effectively recognizing and categorizing types of vulnerabilities and associated attacks.
4. Advanced proficiency in assessing security controls based on cybersecurity principles and tenets.
5. Advanced proficiency in effectively performing root cause analysis for cybersecurity issues.