As
the member of the Laing O'Rourke SOC team the System Analyst must have a
broad technical experience which they will use to identify, analyse and
remediate security incidents across a global enterprise network. In
addition, in line with agreed procedures, the SOC will be responsible
for the day to day and emergency patching of OS / appliances across the
business to proactively and reactively protect the business from
emerging threats. The SOC will be built around the Splunk SIEM tool and
experience with using this platform is seen as advantageous. The
successful candidate will show a willingness to share their experience
with their other team members as well as cross-train in other, security
related disciplines so as to ensure that the highest level of SOC
service is provided to the business.
Essential Experience:
- In-depth experience of deploying and managing Microsoft Server products (Server 2008/2012R2).
- In-depth experience of administering Microsoft Active Directory / DNS / DHCP / IAS / NPS & IIS.
- In-depth experience of automated software / patch deployment platforms (SCCM / WSUS / Etc).
- Competent with scripting tasks for automation using PowerShell and VBScript.
- Previous experience working in a security orientated, administrative role.
Advantageous Experience:
- Experience with various file sharing technologies (CIFS, SMB, DFS, etc)
- Experience of using backups to recover operating system, system state, volumes, applications and application data, backup catalog, and local files and folders
- Experience with security related software (Symantec End Point Protect / Quest / Varonis / Etc)
- Proactive / reactive security patching (Microsoft Server / Application products).
Beneficial:
- Security incident management.
- Forensic incident investigation / root cause analysis.
- Proactive security monitoring / management.
- Good understanding of networking theory and working concepts.
- Knowledge of relevant security standards (ISO27001 / FIPS-140).
- Experience with Solarwinds NPM, SAM, etc.
- Experience with a SIEM tool (Splunk preferred).
- Up to date, broad knowledge of current IT security threats and trends.
- Ability to articulate technical concepts, both oral and written, to audiences of varying levels of technical understanding.
- Effective work load management to deal with both proactive and reactive tasks.
- Working in a global enterprise environment.
- Experience with administering VMWare ESX environments (Version 5+).
- Basic Administration of Linux (Red Hat) platforms.
Qualifications:
- Bachelor’s degree in Computer Science, Information Systems, other related field; or equivalent.
- Microsoft Certifications (MCSA, MCSE); or equivalent.
- Minimum of three years of information technology and/or information security experience in an enterprise environment.
- Minimum of one years as in an Incident Response and Handling role.
- Excellent oral/written communication, problem solving and analytical skills (English).
for more click here
No comments:
Post a Comment