דרושים » אבטחת מידע וסייבר » SOC Analyst

The position includes multiple challenging aspects, such as creation of detection analyses, attack scenarios research, team capabilities developments, client interactions, and in-depth investigation, which include host forensics work in both Windows and Linux systems, and cloud environments (e.g., AWS, GCP and Azure).



Main Responsibilities

Perform Post-Breach monitoring activities in global clients environment including in-depth triage of alerts and host forensics analysis.
Develop out-of-the-box and tailor-made analyses and detection to monitor the clients environment, often based on known threat actor tactics, techniques and procedures. This work may include research activities to support the detection development.
Support major Incident Response engagements with accurate detection after a potential active threat actor in the clients network.
Work on maintaining the necessary visibility and log forwarding for the ongoing monitoring engagements, including host-based data, Cloud environments, network devices, etc.
Apply proactive threat hunting approach in ongoing monitoring engagements, including forensic host and network-based analysis, malware hunt and wide IOC searches.
Develop capabilities and automations for alerts handling, triage and escalation, visibility maintenance, reporting, and more.
Onboard new customers by assessing their security posture, tailoring monitoring systems to their environment, and integrating their security frameworks into our services.
Often work alongside global clients security personnel when providing regular updates and following-up on alerts and security events.
Generate and provide reports and metrics on actionable data: incidents, weekly aggregation/trending, follow up procedures, visibility status, etc.

Required SOC Analyst - US Market
Who We Are
Were passionate about what we do. We work as a team and embrace new ideas, wherever they come from. We also enjoy all the benefits of a startup environment, including quickly seeing the results of your work, making an outsized impact on our company, and solving a diverse set of engineering challenges.
Want to make a big difference? We encourage you to apply!
What will you do?
Proactively monitor and analyze security events and alerts for global customers.
Perform triage of incoming alerts - assess the priority, determine risk, and respond.
Create tickets and escalate them to higher-level security analysts and developers.
Maintain strong knowledge and awareness of the current threat landscape.
Develop internal tools and procedures to automate security analysis tasks.
Work outbound with global customers to create the best insights and actionable data for their needs.

Required Security Operations Center Manager
Job Description
Lead and mentor SOC team members, manage 24/7 shift operations, and recruit and develop a talented group of SOC analysts, ensuring timely escalation and process adherence
Leverage extensive SOC experience to manage computer security incidents by collecting, analyzing and preserving digital evidence
Utilize SIEM/BigData solutions and SOAR systems to locate, identify and investigate cybersecurity incidents, expediting data analysis
Work effectively both independently and as part of a team, collaborating with internal security and incident response teams while demonstrating strong verbal and written English communication skills
Recommend changes to standard operating procedures, create reports, dashboards, and metrics and share best practices to continually enhance SOC operations.

Evaluate tools and best practices for tracking advanced threats, Tools, Techniques, and Procedures (TTPs) of attackers motivations, and industry and attacker trends.
Present tactical and strategic intelligence about threat groups, the methodologies they use, and the motivations behind their activity and convey the importance of findings to a variety of audiences.
Track, research, and contribute Cyber Threat Intelligence (CTI) analysis within Google Threat Intelligence, of customer's priority threat concerns.
Embed within and build an understanding of the customers' cyber threat intelligence requirements. Identify their needs and opportunities for deployment of CTI to have the greatest defensive impact.
Generate CTI and perform analysis of customer data, taking their bespoke sources to identify threat activity, or to build and automate analytical workflows.

Were looking for a Cloud Security Analyst to join our Product team and help expand the power.
In this role, youll play a key role in protecting our customers' cloud environments from cyber threats. Your work will directly contribute to customer success and push the boundaries of cloud security.
This isnt just a jobits a unique growth opportunity. Youll gain hands-on experience that can pave the way for exciting career paths in product management, security research, or development.
WHAT YOULL DO
Innovate and develop advanced detection mechanisms, algorithms, and automated solutions to accurately identify and classify technologies within cloud environments, enhancing our vulnerability management offering.
Analyze cloud services, APIs, and log payloads to ensure compliance with industry standards and customer requirements.
Stay current with the latest technologies and industry trends.
Implement customer requests and industry standards to position us as a market leader.
Collaborate with our Research and Backend teams.

In this position you will
security analyst dedicated to a major customer
Be on the customer site 4 days a week leading all their related activities and will be the liaison between and the customer, will translate their security needs to features and work closely with our Product, Security, SOC, Dev teams on implementing the requirements
Implement customized rules to match security needs for the customer
Perform ongoing security analysis and triage of escalated and critical endpoint alerts
Participate in various stages of incident investigations and threat hunting

We are looking for a Cyber Threat Intelligence Analyst to be an integral part of our Intelligence teams, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers.

Key Responsibilities
Learning the customer needs and PIRs, configuring their tailored environments in the ERM intelligence platform and supporting the customers with tuning/training throughout engagement
Monitoring and analyzing threats targeting customers, or issues in their digital exposure, in order to produce actionable intelligence alerts and reports.
Investigating intelligence sources, threat actors, attack tools and techniques
Identifying and developing ERM data sources to collect the most relevant intelligence (darknet, forums, social media, marketplaces, etc.) as well as creating and maintaining avatars on these.
Developing the proprietary intelligence platform by surfacing new modules, capabilities and features
Joining meetings with prospects and clients to present deliverables.
Drive cooperation & feedback loops with other ERM teams
Job Id: 22635

Were growing and looking to hire Network Analyst who embodies our core values: People First, Customer Obsession, Strive for Excellence, and Integrity.
Responsibilities
As a Network Analyst, Your impact will be:
Explore raw network traffic
Perform in-depth data analysis utilizing various tools
Take responsibility for all data needs for certain clients
Create useful and creative data queries
Collect and enrich data and knowledge through external sources
Develop heuristics and logic-driven analysis by both security and network insights to improve the value of the product
Initiation, Prioritization, and design of R&D work based on customer needs
Work with customers and our customer-facing teams to design new features, improve their workflows, and address issues.

We are seeking a Senior Business Intelligence Specialist to partner up with our team of Business Intelligence and QA Specialists and collaborate effectively to ensure the accuracy, quality, and performance of our partnership intelligence dashboards. This role will be instrumental in ensuring our data solutions drive key business decisions for our clients, providing oversight and guidance to ensure the teams effectiveness in monitoring affiliate performance data.

As a key member in our team, you will manage and lead quality assurance processes, provide actionable insights, and help streamline data monitoring and alert systems. If you have a passion for improving processes, and driving data accuracy in consumer intelligence, we want to hear from you!

Responsibilities:

In-Depth Data QA and Oversight: Continuously evaluate and improve data monitoring and QA processes to enhance team efficiency and data quality. Implement best practices and create standard operating procedures for data verification, analysis, and alert management.

Quality Assurance Supervision: Oversee the regular QA checks conducted on partnership intelligence dashboards to ensure data integrity and consistency. Take a proactive role in resolving discrepancies and ensure the timely delivery of accurate reports.

Data Analysis & Reporting: Lead the analysis of trends and patterns in affiliate performance data to uncover areas for improvement. Prepare and present findings to internal teams in an easily understandable format.

Alert Management Oversight: Supervise the alert management system to ensure relevant alerts are delivered accurately to clients in a timely manner. Work with the team to assess the impact of alerts and determine corrective actions based on client preferences.

Cross-Functional Collaboration: Work closely with internal teams to foster communication and collaboration, ensuring alignment between the QA team and other departments such as R&D.

We are looking for a Sources Development analyst to be an integral part of our Intelligence Research team, combining both cutting-edge technology and advanced threat intelligence analysis methodologies to deliver high-impact briefings to our customers, combatting against cybercriminals.


Key Responsibilities
Intelligence Excellence

Conduct innovative online research on underground platforms of cybercriminals.
Manage and optimize the use of Cyberints automated collection tools and methodologies to ensure peak performance and efficiency.
Cross-Department Collaboration

Partner with R&D, Product, and Intelligence teams to enhance Cyberints solutions.
Process Improvement & Innovation

Continuously refine collection processes and tools to address evolving cybersecurity challenges and market needs.
Ensure the accuracy and quality of collected intelligence, guiding the team in in-depth analysis and reporting.