Mô tả công việc
- Security Operations:
+ Serve as a technical escalation point for SOC analysts in resolving complex security incidents.
+ Monitor, analyze, and optimize the performance of Microsoft Sentinel and related security tools.
+ Conduct advanced threat hunting activities to proactively identify and mitigate potential threats.
+ Lead detailed root cause analyses for incidents and recommend remediation strategies.
- System and Tool Optimization:
+ Assist in development and refine detection rules, alerts, and dashboards in Microsoft
Sentinel to enhance SOC efficiency.
+ Collaborate with IT and security teams to integrate new tools and optimize existing SOC workflows.
+ Evaluate and implement emerging technologies to improve threat detection and response capabilities.
- Incident Response:
+ Coordinate and manage incident response efforts for critical security events.
+ Ensure timely containment, eradication, and recovery during security incidents.
+ Document and share lessons learned from security incidents to drive continuous improvement.
- Mentorship and Training:
+ Provide guidance and technical support to junior SOC analysts, fostering their growth and development.
+ Conduct training sessions to enhance the team's proficiency in threat detection and analysis.
- Threat Intelligence and Reporting:
+ Integrate threat intelligence into SOC processes to bolster proactive defense measures.
+ Prepare detailed reports on incident trends, security metrics, and recommendations for stakeholders.
Yêu cầu
- Education: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).
- Experience:
+ 3-5 years of experience in a SOC or similar cybersecurity role.
+ Demonstrated expertise in managing complex security incidents and optimizing SOC tools.
- Certifications:
+ Required: Microsoft Certified: Security Operations Analyst Associate.
+ Preferred: CompTIA CySA+, CISSP, or other relevant certifications.
- Technical Skills:
+ Extensive experience with Microsoft Sentinel, including expertise in KQL (Kusto Query Language).
+ Strong knowledge of incident response methodologies, threat hunting, and root cause analysis.
+ Proficiency in SIEM tools, cybersecurity principles, and common attack vectors.
+ Familiarity with Azure Active Directory, security configurations, and compliance standards.
- Soft Skills:
+ Strong analytical and critical-thinking skills.
+ Ability to communicate effectively with both technical and non-technical audiences.
+ Team-oriented with a focus on mentorship and collaboration.
+ Composure and professionalism in high-pressure situations.
Quyền lợi
- Competitive income according to ability.
- Pay social insurance, health insurance and enjoy full benefits according to labor law.
- Annual Leaves, 13th Month salary, ...
- Professional, dynamic working environment.
- Time: 8-hour rotating shifts, 2 days off/week
Bảo hiểm xã hội, Bảo hiểm full lương, Thưởng tháng 13, Team building, Thưởng hiệu quả làm việc
Thông tin khác
Địa điểm làm việc
- Hồ Chí Minh: 12A Núi Thành, phường 13, Tân Bình
- Hồ Chí Minh: Quận 3
- Hồ Chí Minh: Quận 10
- Hồ Chí Minh: Quận 11
- Hồ Chí Minh: Gò Vấp
- Hồ Chí Minh: Tân Phú
- Hồ Chí Minh: Phú Nhuận
...và 4 địa điểm khác
Thu gọn