SOC L2 Analyst/Consultant

We are looking for a SOC L2 Analyst to be part of our SOC/CERT team, supporting, monitoring and resolving alerts.

What are we looking for?

We are looking for people with technical education (Bachelor`s degree in Computer Science, a related field, or equivalent) with minimum 2 year of experience monitoring security events in L2. Fluent in English and Spanish will be necessary.

Candidates who provide understanding of incident management cycle would be ideal, as well as necessary experience and knowledge of:

• SIEM: MS Sentinel.
• EDR: SentinelOne / MS Defender (I would need one of them).
• WAF: Imperva.
• CASB: MS CloudApps.
• Phishing analysis (desirable: CofenseTriage/Proofpoint TAP).
• Security elements (IDS-IPS/Firewall/Palo Alto/Fortinet).
• Knowledge of Windows security events.
• Ticketing: ServiceNow.

Any of the following would be a plus:

• Masters degree in cybersecurity.
• Have relevant certifications (SC-200).

And/or

• Experience and knowledge in OT: Nozomi.

What challenges and tasks can you find in this job?

Requirements

• Review and analyze events from various security devices (NIDS, HIDS, IDS, IPS, firewall, WAF, SIEM etc.). Level 1/2 of incidents.
• Communicate any suspicious activity, incident or alert and follow up from their initial treatment to their solution.
• Manage automatic vulnerability analyses (Nessus, Acunetix, WPScan, others).
• Identify, analyze and program security alerts.
• Contribute mantaining company´s infrastructures.