Security Operations Officer

Responsibilities:

• Continuously monitor security alerts and events using SIEM & cybersecurity tools to detect potential threats and vulnerabilities.
• Investigating, documenting, and reporting on any information security (InfoSec) issues as well as emerging trends.
• Configure, manage, and optimize security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus software.
• Must be familiar with computer forensic techniques that can help prevent cybercrime.
• Tasks include collecting, analyzing, and reporting security data.
• Investigate security incidents, respond to security breaches, implement corrective actions, and prepare disaster recovery plans
• Analyze security data to identify trends, patterns, and anomalies, providing actionable insights to mitigate risks.
• Document incidents, create reports on security events, and maintain accurate records of investigations and resolutions.
• Work with other IT and security teams to coordinate responses to threats and communicate findings to relevant stakeholders.
• Work closely with other IT and cybersecurity teams to resolve security issues.
• Collaborate with third-party vendors and consultants, as well as managed security service providers (MSSPs) as needed.
• Stay updated with the latest cyber security trends, threat landscapes, and best practices to enhance SOC operations.

Requirements:

• Bachelor’s degree in computer science, Information Security, or a related field.
• Proficiency in SIEM tools (e.g., Splunk, AlienVault).
• Knowledge of network protocols, familiarity with IDS/IPS systems, and understanding of firewall management.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation.
• Experience with incident response and forensic analysis tools.
• Understanding of threat intelligence platforms and methodologies.
• Relevant certifications like CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or GIAC Security Essentials (GSEC) etc.
• 4-5 years of experience in IT security, network security, or a similar role in a security operations environment.
• Strong analytical and problem-solving skills, attention to detail, effective communication