Summary MSS Security Analyst will monitor multiple security technologies and events using the Security Information Event Management (SIEM) tool to detect & identify IT security incidents.
Experience
2-4 years in Information Security \xe2\x80\x93 Security operations, intrusion detection, incident analysis, incident handling, log analysis, firewall administration
2-4 years in: Network operations or engineering or system administration on Unix, Linux, Windows
Responsibilities
Follow detailed operational process and procedures to appropriately analyse, escalate, and assist in remediation of critical information security incidents
Correlate and analyse events using the Splunk/Log Rhythm/Qradar SIEM tool to detect IT security incidents
Conduct analysis of log files, including forensic analysis of system resource access
Review customer reports to ensure quality and accuracy
Monitor multiple security technologies, such as SIEM, IDS/IPS, Firewalls, Switches, VPNs, and other security threat data sources
Respond to inbound requests via phone and other electronic means for technical assistance with managed services
Respond in a timely manner (within documented SLA) to support, threat, and other cases
Experience
A Degree in Computer Science, Information Systems, Electrical Engineering, or a closely related degree
An active interest in internet security, incident detection, network, and systems security
A sound knowledge of IT security best practices, common attack types and detection/prevention methods
Demonstrable experience of analysing and interpreting system, security, and application logs
Knowledge of the type of events that both Firewalls, IDS/IPS, and other security related devices produce
Experience in using SIEM tools such as Splunk, Log Rhythm, Qradar, Alien Vault, NitroSecurity
Salary: 17k depending on experience Location: Dubai