Beschreibung
SOC Analyst6 month contract (View to extend)
Basel, Switzerland
Some remote work may be possible however this must be carried out from inside Switzerland
Security Analyst with experience in Security Operations who is able to manage incidents and alerts using related technologies. The client is looking for a proactive candidate who is able to pick up things quickly and collaborate with the team and other stakeholders.
Tasks & Responsibilities:
- Providing SOC Tier 1/2 analysis work, handling alerts, triage of cases and incidents within the Cyber Security Operations team
- Work on incident cases and run investigations / analysis
- Work with ticketing tools to manage the security alerts
Must haves:
- 2-3 years of experience in security operations/support level (L1 and 2) with proven experience in case / alerts investigation
- 2-3 years of experience or knowledge of network protocols (http, dns, LDAP, FTP, etc)
- 2-3 years of experience or knowledge of networking (Firewalls, NGFW, IPS/IDS, packet captures)
- Around 3 years of experience or knowledge of Log analysis and Digital Forensics
- Working experience or knowledge with SIEM (preferably IBM QRadar and Azure Sentinel)
- Very good level of English language
Nice to have:
- Familiarity with Cloud security services (Preferably Microsoft Azure)
- Basic programming knowledge is desirable (PowerShell and python) to assist with automation of SOC tasks.
- Experience of handling Incidents to resolution and participating in threat hunting activities