SOC Engineer
Location: Sri Lanka (Colombo)
Location: Philippines (Metro Manila)
Job description
We are seeking a skilled and proactive SOC (Security Operations Center) Engineer to join our team. The SOC Engineer will be responsible for monitoring our environment for operational events as well as security threats, investigating potential security breaches, and implementing security measures to protect our organization’s data. The ideal candidate will have a strong background in information security, on-premises and cloud infrastructures, Microsoft Azure, be adept at problem-solving, and possess excellent communication skills.
Responsibilities
- Monitor security access and identify suspicious activity in real-time using advanced security software tools.
- Respond to and investigate security alerts and incidents, assessing their severity and initiating appropriate procedures to mitigate risks.
- Manage the configuration and operation of security monitoring tools to ensure optimal detection of threats.
- Conduct regular security assessments and audits to identify vulnerabilities and recommend corrective actions.
- Develop and maintain the organization’s incident response plan, ensuring it is up to date and effective in handling potential security incidents.
- Collaborate with IT and network departments to enhance security measures and practices.
- Stay abreast of the latest security threats, vulnerabilities, and mitigation techniques.
- Provide training and guidance to other team members and departments on security best practices and awareness.
- Document all security incidents and actions taken in response to improve future security posture.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or a related work experience.
- Relevant certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable.
- Minimum of 3 years’ experience in a SOC environment or in an information security role.
- Strong understanding of network infrastructure and security architectures.
- Proficient in the use of security and operational tools and technologies, such as Microsoft Sentinel, Microsoft Monitor, firewalls, intrusion detection systems (IDS), and vulnerability scanning tools.
- Knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems).
- Experience with incident response protocols and effective communication strategies during a security incident.
- Ability to work in a fast-paced environment and manage multiple tasks simultaneously.
- Excellent analytical and problem-solving skills, with the ability to think critically and logically under pressure.
- Strong communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders.
