CSOC System Admin

Job responsibilities:

• Responsible for overall secure operation, administration, maintenance of tools and solutions used by Security Operations Center (further referenced as SOC). Responsibilities and duties are planned as follows:

• Continuous maintenance of the systems, tools and solutions, as well as any other attached systems used by Security Operations Center; including configuration management and system updates.

• Ensuring the overall health of the SIEM system, ticketing system, and other SOC technology components.

• Manage verification, validation, tuning, health and collection of Security logs.

• Deploy and tune SIEM Use Cases and Rules driven by security intelligence inputs.

• Implementing use cases as required by Security Intel teams.

• Manage and coordinate equipment and system staging, on-boarding, deployment, configuration & troubleshooting.

• Manage user access including user and group permissions updates for all SOC infrastructure solutions.

• Ensuring that log sources are reporting the SIEM platform.

• Generating reports as required by SOC management teams.

• Configuration, management, performance & capacity planning of SOC solution/products.

• Support for POCs for new CSOC technology and advanced capabilities to adopt/implement

• Review CSOC solution/products vendor announcements.

• Should have good knowledge of systems, solutions and security tools and skills as follows:

• Knowledge about MS Windows and UNIX based systems

• Knowledge of various Virtualization Environments.

• Knowledge of Security Solutions like EDR, Email filtering, Vulnerability Scanners etc.

• Familiarity with Active Directory, Kerberos, and authentication mechanisms

• Problem-solving skills to identify issues with systems

• Communication with other teams to resolve issues

• Communication with vendors related to maintenance of the SOC Systems

Required certifications:

• System administration (IBM, Microsoft, Vmware, Nutanix..etc.)

• Industry certifications (CompTIA, ITIL 4 Foundation... Etc)