Gulf Power Alliance Hiring For Security Engineer – Identity Access Management (IAM-PKI) a[...]

IAM Engineer Function: Threat Monitoring and Triage Function Job Location: Doha Description: The Threat Monitoring function is responsible for monitoring security events, performing initial investigations, and escalating according to documented response playbooks. The Threat Monitoring and Triage function is responsible for security alert monitoring, including threat alert analysis, security alerts escalation, false positive assessment, gathering contextual data, threat classification, initial triage and prioritization, suggestions to respond, and closing or escalation of the alerts to response groups or Tier 3. Responsibilities: Real-time eyes on glass monitoring Monitoring of security events received through alerts from SIEM Performing triage of incoming alerts (initially assessing the priority of the event and qualifying incidents to determine risk and damage) Perform initial analysis and investigation for security alerts Notifying and escalating to appropriate contact for response Provide remediation/countermeasure recommendations, if applicable Adjust alert prioritization options based on security incident criticality Qualifications: Strong knowledge and experience of networking protocols Ability to trace down an endpoint on the network based on ticket information Familiarity with system log information and its implications Understanding of common network services (web, mail, DNS, authentication, AD, DHCP, NAT) Knowledge of host-based security tools such as Anti-malware and EDR Knowledge of packet and log analysis Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat) General Desktop OS and Server OS knowledge Strong analytical and problem-solving skills Previous experience with SIEM and SOAR Experience: 5 to 8 years Notice Period: Immediately Available or 15 Days Package: 9k QAR - 11k QAR monthly Education: Any Graduation 6-month Valid Passport#J-18808-Ljbffr