https://www.linkedin.com/jobs/view/3447013648/
Title: SOC Analyst
Location: Rome
Availability to work on shifts
Activities:
- Security Event Management
- Analyze and investigate security alerts to identify threats and/or suspicious activities performed on IT systems and networks
- In case of alerts that need to be investigated (events), open the case and perform triage to categorize and assign the correct severity
- Understand the magnitude and impact of the event, forward the case to other teams
- Perform false positives continuous tuning
- Produce periodic reporting about the managed events
- Security Incident Management
- Analyze in depth the events associated to a security incident, identifying indicators of compromise (IOCs) and evaluating the attack magnitude identifying the impacted systems/assets and networks
- Execute activities (or support the proper IT Operations teams) for incident containment and service recovery
- Oversee and configure security monitoring tools
- Gather evidences of the incident and draft the Incident Report
- Security Platforms Delivery and Operations
- Manage and continuously evolve the Security Platforms used by the SOC (SIEM, UEBA, SOAR, Antivirus/EDR…)
Requirements:
- English language fluent (preferred: C1/C2 or English mother tongue)
- Availability to work on shifts
- Strong orientation to problem solving
- Good knowledge of the main IT processes, in particular Security Operations processes and procedures
- Good knowledge of the Office tools (in particular Excel, Powerpoint, Word)
Professional Experience/Seniority:
- At least 2 years of experience in SOC and cybersecurity, preferably performed in international contexts;