Cyber Security Analyst Level 2

Cyber Security Analyst Level 2 

The Security Operations Centre (SOC) houses the cyber security team responsible for monitoring and analysing an organisation’s security posture on an ongoing basis. The SOC team’s goal is to provide 24x7x365 capabilities to detect, analyse, and respond to cybersecurity incidents using a combination of technology solutions and a strong set of processes. 

The SOC staff work closely with our customer and eir evo Network Operation Centre (NOC) team to ensure security issues are addressed quickly upon discovery. 

The Cyber Security Analyst Level 2 monitors and analyses activity on networks, servers, endpoints, databases, applications, websites, and other critical systems, looking for anomalous activity that could be indicative of a security incident or compromise.

• Continuously support the customers security infrastructure via SIEM, EDR, VA, SOAR etc

• Handle escalation from L1 Analysts,

• Provide guidance to L1 Analysts,

• Perform advance triage and threat hunting using SIEM, EDR, SOAR etc

• Interact with customers to gather requirements and address them accordingly, 

• Provide recommendation of use case design and fine tuning to correlation engineer,

• Develop case studies and monthly threat reports,

• Perform Vulnerability Assessment,

• Assist in the development of policy, process, and technology,

• Passionate and Professional security mind set 

• Strong customer service skills to follow-up with clients and handle escalations

• Capability to ensure confidentiality and discretion in performing sensitive tasks 

• 2+ years of experience in information security sphere

• 1+ year of experience in supported technology (IBM Security QRadar SIEM and/or ArcSight and/or Splunk)

• Certifications: IBM Security QRadar SIEM Administration and other related to IT Security (CompTIA Security+, CCNA Security, etc.)

• Linux/Unix basics

• Education: Bachelor's Degree or equivalent preferably 

• Experience in investigating security devices (SIEM, IDS/IPS, firewall, endpoint security systems, etc.)

• Knowledge of TCP/IP fundamentals

• Knowledge of Vulnerability Assessment

• Knowledge of routing protocols and technologies

• English: fluent

eir reserves the right to conduct appropriate suitability checks in relation to prospective employees including but not limited to reference checking and/or other searches using publicly available information.

We are committed to creating an inclusive and supportive work environment. If you require any reasonable adjustments during the application or interview process, please let us know, and we will work with you to meet your needs

#eirforall