Webbjobb.io använder cookies för att hjälpa oss göra webbplatsen bättre. Genom att surfa vidare godkänner du lagringen av dessa. Läs mer om cookies.
Webbjobb.io använder cookies för att hjälpa oss göra webbplatsen bättre. Genom att surfa vidare godkänner du lagringen av dessa. Läs mer om cookies.
- Notera att ansökningsdagen för den här annonsen kan ha passerat. Läs annonsen noggrant innan du går vidare med din ansökan.
Monitor SIEM and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises.
Responsible for understanding the global threat landscape and acting on threat intelligence.
Assists with containment of threats and remediation of environment during or after an incident.
Documents event analysis.
Conduct IT security incident response in support of a cyber team, following industry standards of containment, eradication, recovery and lessons learned.
Investigate spam and malicious e-mail reported by internal users.
Perform analysis on threat indicators (e.g. zero-day, phishing campaign, targeted attack, etc.) and intelligent insight. Identify the impact of vulnerabilities against the whole network infrastructure.
Perform forensic on an ad-hoc basis. (e.g. mailbox examination, memory forensic, disk forensic for Indicators of Compromise, etc.).
Perform co-relational analysis on various security / network solutions (e.g. such as Network IPS, endpoints, proxy, email gateway, anti-virus, firewalls, etc.).
Skills:
Strong affinity and skills with IT Security and Networking.
2 or more years of experience in Security Operations Centers or Cyber Security Incident Response Teams
Analytical expertise and critical thinking.
Thorough understanding of fundamental security and network concepts (Operating systems, intrusion / detection, TCP / IP, ports, etc.)
Programming skills (e.g. Python, Java, etc.).
Good English skills, both written and spoken.
Job Desirables:
Security certifications (e.g. Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA, etc.)
Experience with ArcSight / Splunk / FireEye or other security products desired.
Experience managing cases with enterprise SIEM or Incident Management systems.
Experience supporting network investigations.
Experience with network monitoring in a SOC environment desired.
Working experiences with SIEM, Network IPS, endpoints, proxy, email gateway, anti-virus, firewalls.
Knowledge of vulnerability assessment and PCI DSS.
JobMetz is hiring for customer that is world leading within fashion.