CSOC Analyst L1
Forvis Mazars in QatarQatar2 days ago
Full-timeBusiness Development, Sales
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Responsibilities
Responsible to triage cyber security incidents as a member of Security Operations Center incident responders’ team first line.
Responsible to triage cyber security incidents as a member of Security Operations Center incident responders’ team first line.
- Continuously monitors the operating systems alert queue; triages security alerts; monitors health of operating systems security sensors and endpoints; collects data and context necessary to escalate to Tier 2 Analyst.
- Continuously monitoring the operating systems alert queue using multiple tools, such as SIEM, EDR and custom-built system monitoring tools.
- Continuously monitors health of operating systems security sensors.
- Conduction initial triage of alerts to identify potential, false positives, policy violations, intrusion attempts and compromises on the system level.
- Consolidating data from alert triage to provide context necessary to escalate to Tier 2 Analyst.
- Escalate to Tier 2 Analyst with all necessary data for deeper analysis and review.
- Knowledge about MS Windows and UNIX based systems
- Knowledge TCP/IP version 4 and version 6
- Security Event and Incident Monitoring System (SIEM), Orchestration tool and playbook response concept, Endpoint Detection and Response tool (EDR), Anti-malware systems, Intrusion Detection and Prevention Systems, Firewalls.
- Comp TIA CySA+ certificate – Cyber Security Analyst Certification - in good standing
- Incident Response Fundamentals certificate – in good standing
- Analyst/Administrator for any SIEM solution industry leaders
- Some of SANS, GIAC, ISACA, (ISC)2 certificates or trainings
Key Skills
Ranked by relevanceReady to apply?
Join Forvis Mazars in Qatar and take your career to the next level!
Application takes less than 5 minutes