Senior SOC Engineer-Riyadh, Saudi Arabia

Qualification:

 Desired: IT Security Certification such as GCIH/GCIA/CEH/CISSP, product certifications such as SIEM certifications, or ability to obtain via self-study within one year of hire date 

Experience:

• 3+ years of Information Security with at least 2 years of experience in incident analysis and response activities. Experience in a SOC environment is preferred
• Demonstrated experience in a SIEM product
• Significant experience performing analysis of logs from a variety of sources
• Experience with packet analysis (Wireshark) and malware analysis
• Knowledge of current security trends, threats, and techniques
• Experience with scripting (Perl, Python, or bash scripting) 

Duties & Responsibilities:

• Perform tier 2 incident analysis and response for escalated incidents
• Communicate with SOC management, senior SOC staff members, and customers regarding investigations and status updates 
• Design, create and maintain custom SIEM content (creation, evaluation, and tuning of rules, reports, dashboards, etc.)
• Design, create and maintain custom tools that support incident handling and response activities
• Conduct research on attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits to accordingly enhance the threat and technical intelligence of our Cyber Defense services
• Responsible for the continuous availability and support of the on-premise and cloud SOC infrastructure as well as of the CPEs
• End-to-end client integration with SOC (aka client onboarding) for fresh installations and ad hoc scope expansions
• SOC infrastructure design, implementation, maintenance, and support
• Manage system health and capacity utilizing monitoring tools
• Development and improvement of manuals and documentation (deployment and configurations guides, troubleshooting guides, technical articles, etc.)