Security Operations Center Senior - Thu Nhập Up To 3000$

- Security Operations:

+ Serve as a technical escalation point for SOC analysts in resolving complex security incidents.

+ Monitor, analyze, and optimize the performance of Microsoft Sentinel and related security tools.

+ Conduct advanced threat hunting activities to proactively identify and mitigate potential threats.

+ Lead detailed root cause analyses for incidents and recommend remediation strategies.

- System and Tool Optimization:

+ Assist in development and refine detection rules, alerts, and dashboards in Microsoft Sentinel to enhance SOC efficiency.

+ Collaborate with IT and security teams to integrate new tools and optimize existing SOC workflows.

+ Evaluate and implement emerging technologies to improve threat detection and response capabilities.

- Incident Response:

+ Coordinate and manage incident response efforts for critical security events.

+ Ensure timely containment, eradication, and recovery during security incidents.

+ Document and share lessons learned from security incidents to drive continuous improvement.

- Mentorship and Training:

+ Provide guidance and technical support to junior SOC analysts, fostering their growth and development.

+ Conduct training sessions to enhance the team's proficiency in threat detection and analysis

.- Threat Intelligence and Reporting:

+ Integrate threat intelligence into SOC processes to bolster proactive defense measures.

+ Prepare detailed reports on incident trends, security metrics, and recommendations for stakeholders

- Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).

- Experience:

+ 3–5 years of experience in a SOC or similar cybersecurity role.

+ Demonstrated expertise in managing complex security incidents and optimizing SOC tools.

- Certifications:

+ Required: Microsoft Certified: Security Operations Analyst Associate.

+ Preferred: CompTIA CySA+, CISSP, or other relevant certifications.

- Technical Skills:

+ Extensive experience with Microsoft Sentinel, including expertise in KQL (Kusto Query Language).

+ Strong knowledge of incident response methodologies, threat hunting, and root cause analysis.

+ Proficiency in SIEM tools, cybersecurity principles, and common attack vectors.

+ Familiarity with Azure Active Directory, security configurations, and compliance standards.

- Soft Skills:

+ Strong analytical and critical-thinking skills.

+ Ability to communicate effectively with both technical and non-technical audiences.

+ Team-oriented with a focus on mentorship and collaboration.

+ Composure and professionalism in high-pressure situations.