SOC Analyst(L2)
تفاصيل الوظيفة
L2 Analysts will provide context regarding active incidents/threats and will assist security, IT Staff, system owners, and users to remediate through an end-to-end process, from alert generation to threat notification closure through the integrated L1-L4 detection and response functions. The primary purpose of this function is to support all stages of the incident lifecycle. Investigate, validate, communicate threat details, coordinate remediation actions and triage. Level 2 support is provided through dedicated space in ValueLabs Operations Center. Actions:
- Alert Triage & escalated response
- Data Enrichment
- Business contextualization
- Expanded data collection
- Remediation coordination and closure
- Event Correlation
- Malware Analysis
- Contextual Analysis
- Incident management
- Alert Validation & Disposition (Severity 1 through Severity 3)
- Initial incident declaration
- Incident response coordination, assistance, and oversight of remediation actions recommended by the L1
- End-to-end IT Security operations providing incident Response (IR) support
- Investigate, document, and report on information security issues and emerging trends
- SIEM Event Correlation, Log management, Signature & Malware Analysis
- Spam Monitoring & Email protection, Analysis & Threat remediation
- False positives & Rule Suppression / Whitelisting
- End User Threat Management
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.
