SOC Analysts – OPSWAT

Website OPSWAT

OPSWAT is a global cyber security company providing solutions for enterprises since 2002 to identify, detect, and remediate advanced security threats from data and devices coming into and out their networks. Trusted by over 1,000 organizations worldwide and with over 30 anti-malware engines, 100+ data sanitization engines and more than 25 technology integration partners, OPSWAT is a pioneer and leader in data sanitization, vulnerability detection, multi-scanning, device compliance, and cloud access control.

OPSWAT. Trust no file. Trust no device.

The Position

  • Providing security analyst expertise as it relates to engineering, analyzing, and leveraging the ingestion of large amount of internal and customer information, events, and logs. Ensuring that a best of class security operations practice is in conformance with pre-existing and developing scopes as they relate to customers’ needs and demands.
  • Engineering, administration, and fostering an existing SIEM, while also being aware of, and assessing the posit for migration or evolving the incumbent platform. Ensuring best practice is adhered to regarding the deployment and operations of search heads, deployers, deployment systems, forwarding utilities and services, end point utilities, services, and applications, as well as in-house and third-party applications.
  • The selected analyst will take charge and own the onboarding process, the coverage awareness and publishing, analysis orchestration, and responses to incident or anomaly. All configuration of files, services, and endpoints to meet or exceed promised metrics and SLAs. The selected individual will be required to have in-depth knowledge of SIEM components, architecture, operations, and tuning to ensure expeditious troubleshooting, tuning, and general usage. Query and dashboard creation will be a primary focus, as well as assistance in building and developing queries and dashboards (along with monitors, alarms and reports).

What You Will be Doing

Query creation and adjustments for quick and ad-hoc customer needs or demands

Dashboard building and editing for visual representation both internally, and to external stakeholders

Splunk (cloud and on-premises) platform knowledge will be highly preferred

Deep understanding of system configuration to best ship and forward logs, information, and events

Application monitoring, and system monitoring knowledge

Network understanding and competency

Ability to do more than ‘modify’ existing scripts/SQL statements

What We Need from You:

  • 2 – 3+ years in Security or Cybersecurity
  • 2 – 3+ years or equivalent experience in professional or managed service delivery
  • Experience with Windows and Linux operating systems
  • Experience with Cisco or similar networking platforms

Desired Qualifications:

  • Security+
  • Splunk certification(s)
  • Bachelor’s degree in Computer Science, MIS, CIS, or similar

OPSWAT is an equal opportunity employer. We celebrate diversity and are committed to providing an environment where equal employment opportunities are extended to all employees and applicants, free of discrimination and harassment of any type. All employment decisions are based on individual qualifications, job requirements, and business needs without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other category protected by federal, state, or local laws.

You must sign in to apply for this position.

Đăng nhập hoặc đăng ký để nhận thông tin Việc làm IT hấp dẫn.

Việc làm IT chất lượng lương cao

Bài viết liên quan

Đã thêm item vào giỏ hàng.
0 item - 0