A. Basic Scope of Job:
Will act as Security Operations Monitoring expertise to monitor and analyze security events, identify potential threats, and respond to security incidents.
B.Responsibilities :
- Monitor Day-to-day activities involve monitoring security systems, analyzing security events, and collaborating with the team to ensure the organization's IT security.
- Monitor security systems and analyze security events to identify potential threats.
- Respond to security incidents and provide timely resolution.
- Collaborate with the team to ensure the security of the organization. Maintain and update security documentation and procedures.
- Provide technical guidance and support to the team.
- Interface with technical personnel and other teams as required.
- Manage security incidents from identification through remediation; receive, document, and report cyber security events.
- Assist in larger security incidents and more complex investigations.
- Analyze reports to understand threat campaign(s) techniques, and lateral movements and extract indicators of compromise (IOCs).
- Effective process changes are recommended to enhance defense and response procedures.
- Identify emerging threat activities globally and across the region.
- Respond to security incidents and provide post-incident analysis.
C. Qualifications:
- Bachelor's or above degree in a related field or equivalent full-time
- IT Security certifications such as GCIA, GCIH, GCIA, GREM, CEH, GCFA, CISSP, etc.
Skills
- Incident and Problem Management skills
- Understanding of cloud infrastructure (Amazon, Azure, Google)
- Security analysis skills (logfile analysis and analysis of mixed data sources/types)
- Basic skills in forensic and threat hunting.
- Ability to manipulate and present data
- Fundamental understanding of network protocols & architecture
- Strong problem-solving skills
- Strong willingness to learn and grow within the role
- Experience with Splunk Enterprise Security.
- Excellent verbal and written communication skills including the ability to clearly articulate technical and strategic level cyber matters to a variety of audiences
Additional Remark:
- The role is Kuwait-based/ Transferable Visa
- Client-based
- Flexibility on working hours - 24* 7 operations
- Immediate Joiners are preference