SOC Analyst - Level 3 | Permanent WFH/Remote | 2 HMO dependents from day 1
2 to 4 Years
Open to Work From Home
With Business Certificates
Established in 2013
Total vacancies for this job title: 1
Posted On: January 26, 2023
Job ID: 418868
WHAT WE OFFER:
Great Place to Work-Certified Company
Holistic employee experience
Rewards and incentives
Monthly engagement activities
Career advancement opportunities
Paid referral program
Permanent work from home
2 HMO dependents from day 1
About the Client:
Intalock is Australia’s leading provider of cyber security managed services. They pride themselves on being uniquely different, they not only deliver world class cyber security managed services, they have a wealth of experience in understanding data, the lifeblood of any organisation.
As a Cyber Security industry, they think that good security is building higher walls around our companies taking a lot of time, money and resources which isn’t effective or sustainable.
At Intalock they take a different approach, they want to understand your data, it’s sensitivity, how you use, store and share it, actually they want to understand everything about it. By doing this they help their client by building and managing innovative solutions to reduce their risk by taking a strategic data centric approach to cyber security.
The successful candidate will be part of a team of skilled cyber security analysts who will deliver specialist Cyber Security capability to contracted customers. This consists of several security logging, security monitoring and security operations services, designed to detect external and internal cyberattacks on the customers IT and network infrastructure.
The Level 3 SOC Analyst is a senior member of the SOC team and is required to supervise, quality control and mentor junior analysts. They should be proficient in security analyst tasks and have a deep understanding of intrusion activities, incident response techniques, tools and procedures.
Deliver security-based operational support for Managed Service customers, in line with documented process and timeframe.
Research on Threat or Security related news that could potentially impact a client.
Proactive threat hunting in large volumes of data depending on IOCs or TTPs, threat profiling and validation.
Receives escalations from customer or management related to Incident Response which may lead to deeper analysis. Tasks will include creation of a timeline, provide tactical and strategic recommendations, prepare the post incident report and after-action review.
Handles communication to a mix of technical and non-technical client audience.
Compute and then create scan schedule for vulnerability management, coordinated remediation including ad-hoc requests.
Creates custom reports based on the data gathered on a weekly/monthly basis.
Develop use case and/or operational playbooks.
Document encountered processes for the SOC use.
Providing analytical and technical support to solve a wide range of complex security issues
Raising support tickets and taking ownership through to completion
Participate in open communication between team members
Degree in computer science or equivalent.
3-5 years of Cyber Security experience.
With SOC / CIRT / Vulnerability Management / Threat Intel / Security Administration experience.
Thorough knowledge of security architecture, system administration and networking (including TCP/IP, DNS, HTTP, SMTP)
Good understanding of the cyber security landscape and security concepts.
Understanding the different occurrences of incidents, different scenarios, and situations.
Knowledge in using at least 2 SIEMs is a plus.
Preferably has Security related certification.
Skills and Attitudes:
Willing to work in 24 x 7 environment, including day and night shifts.
Commitment to continual education, personal development, and willingness to learn.
Strong troubleshooting skills and ability to manage issues through to resolution.
Maintains strong attention to detail in high-pressure situations.
Ability to explain in written and spoken English.
Strong ambition and ability to develop and expand cyber security services and product support.
Must have Fiber Optic internet with at least 25 Mbps bandwidth
Must have a backup desktop or laptop with the latest OS
Must be able to work on a shifting schedule