30 ene
Alcon
Nuevo Casas Grandes
.Senior SOC Analyst- Location: Mexico City (Hybrid)_At Alcon, we are driven by the meaningful work we do to help people see brilliantly.
We innovate boldly, champion progress, and act with speed as the global leader in eye care.
Here, you'll be recognized for your commitment and contributions and see your career like never before.
Together, we go above and beyond to make an impact in the lives of our patients and customers.
We foster an inclusive culture and are looking for diverse, talented people to join Alcon.In this role, a typical day will include:- Analyzing & reviewing escalated cases until closure.
This includes investigations & recommending appropriate corrective actions for cyber security incidents.- Leading efforts in monitoring, reporting, and responding to major information security incidents.- Create & deploy Use Cases for SIEM.
Periodically fine-tune the use cases as per business requirements.- Must have proven hands-on experience in security technologies such as - SIEM, SOAR, EDR, and DLP.- Scripting knowledge (Python, PowerShell, or Perl) would be an added advantage.- Create ad hoc reports & dashboards from SIEM as per requirements.- Troubleshooting logs sources and log parsing issues.- Management, administration, upgrades & maintenance of Alcon security operations devices.- Responsible for integration and onboarding of standard and non-standard log sources in SIEM.- Understanding of various attack methods and mitigation techniques for on-premises and multi-cloud environments- Root cause analysis preparation for major incidents.- Drive the outcomes of lessons learned to improve the organization's security posture.- Act as a point of escalation for L1 & L2 SOC personnel in support of Security Incident Response investigations.- Assess, identify,
and create policies to automate incident response.- Coach and mentor junior analysts.- Support Alcon DLP solution and help define policies.WHAT YOU'LL BRING TO ALCON:- Bachelor of Science from an accredited institution.- The ability to fluently read, write, understand, and communicate in English.- Strong knowledge of best practices in incident management, problem management, and change management.- Superior communication skills and ability to brief senior government officials.- 5+ years of Information Security / Cybersecurity experience.- DESIRED SKILLS AND CERTIFICATIONS- Experience in networking and telecommunications integration, design, and architecture.- Strong OS knowledge of Windows and Linux, including networking and security.- Hold preferably two but at minimum one relevant industry certification (GCIH, GCED, CISSP, CEH, GMON, etc.
)- Understanding of SIEM tools such as Splunk, FireEye Helix, ArcSight, Microsoft Sentinel, McAfee Nitro, etc.- Experience with Active Directory, IAM, PAM- Experience building and maintaining a high-performance team of analysts.- Expertise with an industry-standard framework (ISO, NIST, PCI)
Muestra tus habilidades a la empresa, rellenar el formulario y deja un toque personal en la carta, ayudará el reclutador en la elección del candidato.