SOC Senior Analyst

Functional Responsibilities:

• Facilitate coordination between information security projects and operations
• Ensure security controls are executed according to policies, regulations and standards
• Establish, produce and enhance information security, risk and conformance to operational security activities
• Participate actively in development of security policies, procedures and standards
• Suggest and verify baseline security configurations for applications, operating systems, networking along with telecommunications equipment
• Assist with closing audit finding by performing / suggesting the required controls to meet the objective(s)
• Perform Security assessments based against business requests
• Develop Information Security Reports for MEEZA and clients
• Facilitate remediation of identified security vulnerabilities and mitigation of security risks
• Facilitate closure and implementation of action items identified from security incidents
• Assessment and implementation of security technologies across various pillars of Information Security including, but not limited to endpoint security, network security, data protection and privacy, thus enhancing functionality of services with security in place
• Maintain organization’s compliance to various security standards such as ISO 27001/02, National Information Assurance Policy - Qatar
• Manage and ensure all employees are compliant with the organizational Cyber Security Awareness requirements
• Review and update organizational security policies, processes and procedures
• Draft the Monthly Information Security Executive Report
• Making sound technical and business decisions in a sometimes resource restricted environment
• Must be approachable and always uphold values and characteristics of a MEEZA Employee
• Monitor SIEM, EDR, and other security tools for detection and identification of security events
• Monitor and analyze security events using Google SecOps / Google Chronicle, including:
• UDM-based detections
• Rule-based and YARA-L detections
• Behavioral and threat intelligence–driven alerts
• Perform alert triage, investigation, and escalation using Chronicle search, timelines, and entity analysis.
• Create, tune, and optimize detection rules and use cases in Google SecOps to reduce false positives and improve detection accuracy.
• Maintain a good relationship with customers and internal functions while resolving their issues quickly and professionally
• Responsible for generation of observations and recommendations for operational optimization
• Assist in developing and implementing processes for detecting, identifying and analyzing security related events in coordination with client’s security policy and risk management
• Identify vulnerabilities on corporate IT assets to mitigate the risk of exploitation of these vulnerabilities and to respond to such attacks in a professional and efficient manner

Knowledge, Skills & Experience

Academic & Professional Qualifications:

• Bachelor's degree in computer science, information systems, engineering or equivalent.
• Exposure to Information Security Best Practices such ISO27001, ISO31000, ISO 22301, COBIT for Risk and NIST
• An understanding of Information Security relating to the Confidentiality, Integrity, and availability of information.
• Understanding of IS regulatory requirements in the state of Qatar
• CISSP / CISA / CRISC / NIAP Implementer

Certifications

• Certified Ethical Hacker
• Security+
• CCSP / CCSE
• Google SecOps

Experience:

• 5+ years as Security Analyst preferable in MSSP.

Skills and Requirements:

• Exposure to IT service management best practices such as ITIL and ISO27001
• Experience in ISO27001 process and procedures and can work on their own with little supervision
• A good communicator at all levels
• A sound knowledge of IT security best practices, common attack types, and detection / prevention methods
• Strong written and verbal communication skills
• Attention to detail and great organizational skills
• An active interest in Cyber Security, incident detection, network, and systems security
• Experience or qualifications in network and systems monitoring
• Experience in successful implementation / exposure / participation of a Business Continuity and Disaster Recovery Program
• Experience in performing risk assessments and managing information security risks of an organization
• University degree in any field related to Information Technology
• Minimum 5+ years’ experience focused on the IT Security field (e.g. Incident Response, Incident Investigation, Incident Remediation)
• Practical experience using SIEM platforms, preferably Google SecOps / Google Chronicle, including:
• Event monitoring and alert investigation
• Advanced search and log analysis
• Rule-based and behavioral detections
• Alert tuning and false-positive reduction
• Experience in using Security Solutions such as Endpoint Security, Web, and Email Filter, APT, etc.
• Software engineering, programming, or scripting knowledge. Java, Net.
• An excellent communicator at all levels.
• Strong written and verbal communication skills.
• A sound knowledge of IT security best practice, common attack types, and detection / prevention methods.
• Attention to detail and great organizational skills
• An active interest in Cyber Security, incident detection, network, and systems security.
• Experience or qualifications in network and systems monitoring preferable banking experience