22 feb
Reconocida empresa
Estado de México
Role Summary Professionals at Ackcent Cybersecurity have a common goal: to improve the security of our customers, protect their assets from cyber threats, and provide high-quality service through communication and care for our customers.
In this position, you will be part of our SOC Team in charge of security threat monitoring and incident handling, helping secure and defend our clients' assets.
We are looking for professionals with experience in cybersecurity and a wide and deep understanding of Networks, Security Architecture, and Security Monitoring Tools.
As a key member of the Ackcent team, you will be in charge of leading the handling of security threats and incidents, improving, and maintaining tools and procedures,
and conducting forensics and malware analysis for further mitigation and threat containment.
As a senior position, you will be able to train and support other junior team members and will be involved alongside other Ackcent departments in different initiatives and decisions regarding internal and external Security Services.
Responsibilities Analysis and verification of security threat monitoring alerts to produce incident identification, classification, and prioritization.
Create, improve, and maintain security monitoring alerts based on the correlation of different sources of data.
Operate and maintain the technologies that Ackcent's SOC offers to customers (SIEM, EDR, CTI, WAF, etc.
), working closely with security/network architects to take security monitoring and defenses to the next level.
Lead the response to security incidents and investigations working closely with customers and IT providers, following SLA requirements.
Conduct digital forensics and malware analysis to extract indicators of compromise for further mitigation and containment,
evaluating incident scope and impact.
Report to the SOC Manager and the involved customer CISO/CIO.
Ensuring contractual obligations and SLAs are met or exceeded.
Manage priorities, deadlines, and deliverables.
Advise and train junior team members.
Proactively monitor the cyber threat landscape by performing research and studying the latest security threats and vulnerabilities to ensure operational tools and processes are up to date.
Qualifications Computer/Telecommunications Engineering degree or a related discipline.
More than 3 years of relevant experience in the field of information security.
Experience working in a Security Operations Centre (SOC) environment.
Experience managing security incidents and performing digital forensic analysis.
Strong technical understanding of network fundamentals and common Internet protocols.
Knowledge of system administration and security architecture.
Knowledge of the main security monitoring tools (SIEM, EDR, CTI, WAF, etc.).
Scripting in Bash, Python, or PowerShell.
Fluent in English (written and spoken).
Self-motivated with the ability to work independently and as a team member in a challenging environment.
Bonus: Experience working with AWS or Azure infrastructure.
Previous experience managing some SIEM and EDR.
Related Certification (GCIH, GCFA, GCFE, GREM, CISSP) is a plus.
#J-18808-Ljbffr
Muestra tus habilidades a la empresa, rellenar el formulario y deja un toque personal en la carta, ayudará el reclutador en la elección del candidato.