Location: Lahore/ Islamabad

Summary

The Security Operations Center role reports up through the Security Operations Manager and is responsible for incident triage, monitoring and response innovation, basic forensics, and coordinating in response activities. Members of the SOC Team are expected to be collaborative, self-starting, open to learning, creative, and to participate in an off-hour page out rotation.

Responsibilities

• Monitor security access and report suspicious activity to a higher level or team members.

• Conduct security assessments regularly to identify vulnerabilities and performing risk analysis.

• Analyze the breach to reach the root cause. • Handling escalations and response actions for existing incidents.

• Teach other members of the team on topics of expertise. • Harvesting threat intelligence and converting it to actionable content.

• Participate in table-top exercises, ethical hacking, and event triage preparation.

• Generate reports for IT/SOC administrators, business managers, and security leaders. These reports serve as an input to evaluate the efficacy of the security policies.

• Advise and implement necessary changes required to counter the attack or improvise security standards.

• Keep the security systems up to date and contributing to security strategies.

• Document incidents to contribute to incident response.

• Developing and documenting new monitoring techniques and response capabilities.

• Researching vulnerabilities and hacking utilities to harden environment.

• Learning new technical disciplines both in teams and individually.

• Hunting for risk in the environment and relating findings to actionable activities.

• Educating employees on individualized threats and/or impact of incidents.

Requirements

• B.S. degree in Computer Science or related field, or equivalent work experience.

• Minimum of 2-3 years of progressive experience as a SOC analyst, security researcher and ethical hacker

• Experience in leading teams in a cross functional setting.

• Proficient with SIEM, EDR solutions and other monitoring tools.

• Must have Certification like CEH, CHFI, Blue Team or any relevant certifications