Description
My Client, A tier 1 bank based in Brussels is looking for a SOC/SIEM analyst (Tier 2) who can operate with Arcsight/Splunk.
Provide advanced security event analysis, incident hunting and threat intelligence analysis activities. Candidates in this role must have excellent communication skills. Will be required to participate in multiple intelligence communities and be able to disseminate pertinent information throughout the SOC.
- First point of escalation for the Tier 1
- Advanced analysis of security alerts escalated by the Tier 1 team, determination of the nature of the event and escalation to CIRT for incident response
- Hunting for suspicious anomalous activity
- Analyse cyber threats and security intelligence feeds and extract relevant indicators of compromise
- Perform hunting activities based on IOC information
- Review and build new operational processes and procedures.
- Provide rule development/tuning recommendations based on findings during investigations or threat information reviews
- Lead response activities for predefined low/medium priority incidents
- Support the creation and maintenance of a knowledge base
- Provide training, knowledge sharing sessions to the SOC team
- Reporting activities
Skills required:
- At least 2 years' experience in a prior role including incident handling, hunting and content development
- Arcsight/Splunk
To apply send your CV or call me. If I am not available I will call you back to discuss further with a view to securing an interview as soon as possible.
We look forward to hearing from you,
Best regards,
Amel