SOC Expert

About team:

The SOC expert is part of KL SOC team engaged consulting projects, related to security operations.

The position focus will be:

• Participate in the following types of projects: SOC consulting, SOC maturity assessment, Threat hunting consulting, Threat hunting assessment
• Participate in services maintenance and development
• Customize service deliverables to fulfil customers specific expectations
• Participate in different stages of service delivery

What we expect from you::

• Practical experience in building and maintaining security operations processes like: Monitoring and triage, infrastructure control, sensor control, Incident response and lessons learning, Incident management, Problem management, Case management, Threat hunting, Threat intelligence, Threat research and modelling, Change management, QA and continuous improvement, Delivery management, etc
• A good understanding of the SOC processes and their adaptation based on SOC capabilities, maturity, scope and scale
• Previous experience as SOC expert/methodologist/manager is mandatory
• Good understanding of SOC technical architecture and interaction of cruel SOC technologies
• Practical experience with working with typical SOC technologies: SIEM, IRP and forensics tools, Threat intelligence platform, event sources configuration: network and host IDS/IPS, EPP/EDR, NGFW, network tools (i.e. netflow, Bro/Zeek), security assessment tools, operating systems and network equipment logs, Web/Mail gateways, DLP, etc
• Practical experience in developing enterprise-level guidance documents – policies, standards, procedures

Other requirements:

• Certifications like CISSP, CISA, CISM might be an advantage