Security Analyst Job in The Athlos
Hiring a Security Analyst to join our Global SOC team. Analysts work in a team environment to monitor the health and wellness of security devices on our partner's client networks. You will work with a fast-paced global leader in IT Security Services providing support to our vast partner base amid an ever-changing technology landscape.
The Security Analyst is responsible for managing multiple security technologies including Firewalls, UTM, Next-Gen Firewall, Web & Email Gateways and Web Proxy solutions. The analyst will be the primary point of contactfor IT Security Partners and their customers. The analyst will configure and maintain these technologies and will be responsible for analysis, escalation, and assistance in remediation of critical information security incidents.
Responsibilities
- Manage a fleet of firewalls such as FortiGate, Palo Alto, Sonic WALL, Sophos, Cyberoam, and Watch Guard, including security operations, maintenance, and configuration
- Provide continuous Security Threat Analysis for Antivirus, Malware and Ransomware attacks across multiple platforms
- Research security threats in our customer environments
- Update rules and use cases to ensure proactive protection of our customer s IT environments
- Provide Incident Response for IT Security Related incidents
- Ensure quality service delivery and professional service management is provided to our customer
- Resolve client issues by taking the appropriate corrective action, or following the appropriate escalation procedures
- Respond to inbound phone and email requests for technical assistance from customers
- Utilize ticketing system and standard operating procedures for effective call processing and escalation to adhere to client Service Level Agreement (SLA)
- Perform all tasks required per shift including reporting, monitoring, and turnover
- Liaise with customers and external vendors as required
- Provide 24 7 Operational support; rotational shift
Skills/Experience
- 2+ years of experience in Network Security Operations / Managed Security Services Operation Center
- Experience monitoring security information and event management (SIEM) systems
- Experience working in a fast-paced environment managing critical security events
- Root cause analysis experience, getting to the root cause, problem-solving
- Extensive hands-on experience with network security components (e.g. Firewalls, VPNs, Routing / Switching) and management of these components
- Hands on experience analyzing or reviewing events from firewalls, IDS, HIPS, Windows AD event logs, Syslog, and vulnerability scanners
- Experience in analyzing intrusion events in a large enterprise environment
- Must have the ability to learn, grasp, and understand new technologies
- Willingness to acquire in-depth knowledge of network and host security technologies and desire to continuously improve these skills
- Functional knowledge of network troubleshooting and analysis tools, such as Wire shark and tcpdump
- Must have a general view of the current state of information security threats and compliance
- Individual must be a self-starter with the ability to multi-task and work within a high-performance team
- Effective tracking and task reporting skills
- Excellent written and oral communication skills
- Excellent problem solving & diagnostic skills
Desirable Criteria & Qualification
- Desirable certifications include, Security+, CEH, GCIA, GCIH, CISSP or similar
- Experience with North American customers is highly desirable
- Advanced knowledge of the TCP and IP protocol suite, security architecture, and remote access security techniques and products desired
Minimum 2 Years
2 - 4 Hires