- Conduct multi-step breach and investigative analysis to trace the dynamic activities associated with advanced threats.
- Perform investigation and escalation for complex or high severity security threats or incidents.
- Serve as an escalation resource and mentor for other analysts.
- Work with SIEM Engineering to develop and refine correlation rules.
- Work on complex tasks assigned by leadership, which may involve coordination of effort among Level 1/2/3 analysts.
- Coordinate evidence/data gathering and documentation and review Security Incident reports.
- Assist in defining and driving strategic initiatives.
- Define tool requirements to improve SOC capabilities.
- Understanding of the cyber Kill Chain and MITRE ATT&CK and experience applying them to defensive operations.
- Experience analyzing packet captures to identify malicious activity.
- Fluency in common network protocols including TCP/IP, DNS, TLS,
- Experience with SIEM technology such as: AlienVault USM Appliance, USM Anywhere, LogRhythm, and/or Wazuh IDS highly preferred.
- Malware reverse engineering experience a big plus including tools used.
- Phishing email attack analysis to include extraction of links and/or files to determine what the attacker is trying to gain.
- Monitor, respond to, and analyze SIEM alerts from monitoring tools.
- Provide technical guidance / recommendations to clients to enhance their overall security posture within the managed products. Handles daily incidents; monitors, tracks, analyzes and records.
- Work with vendors, outside consultants, and other third parties to improve information security within the organization.
- Responds to security related tickets escalated from clients, and works collaboratively within the client to assist in resolving security events.
- Work with other IT professionals to resolve fast moving vulnerabilities, such as spam, virus, spyware and malware.
- Monitor security vulnerability information from vendors and third parties.
- Create Weekly and Monthly Status Reports, including daily technical task reports and contract deliverables.
- Proactive Threat Hunting using industry tools and existing IDS systems.
- Advanced Forensics skills to evaluate current malware and phishing threats.
- Strong written, verbal and non-verbal communication skills, especially conveying complex information in an understandable manner.
- CISSP, CISA or GIAC certification is a plus.
- A minimum of 5 years of experience working with Microsoft Active Directory.
- Experience in managing an organization's PCI, HIPAA, or SSAE16 certification is preferred.
- Analyze and resolve complex technical and business problems.
- Must have proficient knowledge with three or more of the following technologies: Application / stateful / UTM firewalls; SIEM; DLP; Web content filtering; Web application firewalls (WAF); Vulnerability scanning and penetration testing; IPS/IDS; Security Operations Center operations; Wireless Networking; UNIX, AIX & Solaris, Linux, Windows Server Operating Systems; Endpoint and Malware.
- Knowledge with NIST, FISMA, DIACAP.
- Knowledge of Windows server platforms.
- Knowledge of VMware and VM server platforms.
- Knowledge of UNIX server platforms.
- Working knowledge of analyzing IIS, SQL, firewall, IPS/IDS, Windows.
- Web and mail logged events.
- Ability to analyze IANA assigned ports (well known, registered, dynamic and private ports).
- Ability to troubleshoot common network devices, network, vulnerabilities and network attack patterns.
- Ability to troubleshoot Windows Event IDs.
- Interact with all levels of management.
- Make decisions based on many variables.
- Manage multiple tasks/projects simultaneously.
- Minimum of Bachelor's Degree in computer science, telecommunications management, electrical engineering, or a related field or have 4 years of experience.
- Advanced network and systems certifications such as CCNP, CCNA and CISSP, are preferred.
- Other industry certifications such as ITIL, Microsoft, Juniper and Checkpoint are a plus.
-
Security Operations Center
hace 5 días
Dresden Partners Guadalajara, México**Descripción**: · En Dresden Partners buscamos tu talento como **Security Operations Center.** · Somos una consultoría especializada en web technology, mobile and software development, servicios near-shore staffing, tech international y local tech sourcing trabajamos para proyec ...
-
Consultor - Security Operations Center (Soc)
hace 4 días
Dresden Partners Guadalajara, México**Descripción**: · En Dresden Partners conectamos el talento con empresas globales de primer nível. Somos un puente de oportunidad laboral especializados en Reclutamiento TI en México, LATAM y USA. · **Estamos en búsqueda de talento para la posición: Consultor - Security Operatio ...
-
Security Operations Center L1/ Gdl
hace 4 días
Dresden Partners Guadalajara, México**Descripción**: · En Dresden Partners buscamos tu talento como **Security Operations Center.** · Somos una consultoría especializada en web technology, mobile and software development, servicios near-shore staffing, tech international y local tech sourcing trabajamos para proyec ...
-
Avanciers Guadalajara, MéxicoHi, · Role - System Center Operations Manager Customer Engineer · Location - Guadalajara, Mexixo (Onsite) · Roles and Responsibilities: · Evaluar las necesidades de los clientes: como ingeniero de atención al cliente de System Center Operations Manager, será responsable de evalua ...
-
Security Operations Center
hace 3 días
Epsilon Solutions Guadalajara, México**Vacante para la empresa Epsilon Solutions en Guadalajara, Jalisco**: · **Security Operations Center (SOC) - L1 or L2**: · We are looking for a Security Operations Center (SOC) - L1 or L2 · **Requirements**: · Grade: Computer Systems Engineer or equivalent (DEGREE, 100% of credi ...
-
Better Future Solutions Inc. Guadalajara, México**Role - System Center Operations Manager Customer Engineer** · **Location - Guadalajara, Mexico** · **Mode - onsite** · **Salary - open** · **No of positions - 13** · Roles and Responsibilities: · Assess client needs: As a System Center Operations Manager Customer Engineer, you ...
-
Security Operations Center
hace 4 días
Avertium, Llc Guadalajara, MéxicoAvertium is the security partner that companies turn to for end-to-end Cybersecurity solutions that attack the chaos of the cybersecurity landscape with context. By fusing together human expertise and a business-first mindset with the right combination of technology and threat in ...
-
Senior Security Operations Center
hace 1 semana
Avertium Guadalajara, MéxicoSenior Security Operations Center (SOC) Analyst Avertium is the managed security and consulting provider that companies turn to when they want more than check-the-box cybersecurity. In today's threat landscape, your not-so-standard processes, workflows, and vulnerabilities requir ...
-
Entrenador Técnico de Operaciones Gss y Pic T2
hace 5 días
Flex Guadalajara, MéxicoThrough the collective strength of 170,000 team members across 30 countries and responsible, sustainable operations, Flex, a Fortune global 500 company, is the diversified manufacturing partner of choice that helps market-leading brands design, build and deliver innovative produc ...
-
Agente Call Center
hace 1 semana
IBM Guadalajara, MéxicoIntroduction · Client satisfaction will be your ultimate goal in this role. As a Call Center Service Operations, you will be on the front line serving our customers. You'll be the technical resource and point person interacting with clients, vendors, and senior management, to ide ...
-
Call Center Agent
hace 1 semana
Linked Helpers Guadalajara, MéxicoFull Job Description · WE ARE HIRING CALL CENTER AGENTS · You will be answering outbound calls to customers who want to place orders, respond to inquiries. · Responsibilities and Duties: · - Answering outbound calls · - Deliver prepared sales scripts to persuade potential custome ...
-
Operations Manager
hace 4 días
CSC Solutions Guadalajara, México**About CSC Solutions**: At CSC Solutions, we are at the forefront of providing exceptional bilingual contact center services. As we continue to expand, we're seeking a dynamic Operations Manager to spearhead our operations at our Guadalajara office. If you have a knack for overs ...
-
Team Lead Call Center Gdl
hace 1 semana
Intugo Jalisco, MéxicoCollaborate with a new media company that is a leading online marketing and communication software service, with an operational model that powers our creation of best-in-class digital platforms for consumers and for our commercial partners. Offering the best customer service avai ...
-
Team Lead Call Center Gdl
hace 4 días
Intugo Jalisco, MéxicoCollaborate with a new media company that is a leading online marketing and communication software service, with an operational model that powers our creation of best-in-class digital platforms for consumers and for our commercial partners. Offering the best customer service avai ...
-
Service Center Supervisor
hace 2 días
Koch Business Solutions Guadalajara, México**Description** · Are you interested in leading a high performing HR Shared Services Center team? Would you like the opportunity to work with Koch Global Services business partners to increase effectiveness and improve the customer experience? If so, the Human Resources Service C ...
-
Team Lead Call Center
hace 1 semana
Intugo Call Center Guadalajara, México**Description** · Description · Collaborate with a new media company that is a leading online marketing and communication software service, with an operational model that powers our creation of best-in-class digital platforms for consumers and for our commercial partners. Offerin ...
-
Customer Service Representative Jr
hace 1 semana
IBM Guadalajara, MéxicoIntroduction · Client satisfaction will be your ultimate goal in this role. As a Call Center Service Operations, you will be on the front line serving our customers. You'll be the technical resource and point person interacting with clients, vendors, and senior management, to ide ...
-
Bilingual Interpreter Supervisor
hace 1 semana
CyraCom International Guadalajara, MéxicoCyraCom International is a leading provider of Interpretation Services in the US and we are thrilled to be opening our first contact center in Guadalajara, Jalisco We are seeking experienced Bilingual Contact Center Supervisors to serve as the first-line supervisor directly overs ...
-
Network Support Engineer Ii
hace 2 días
f5 Guadalajara, MéxicoEverything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive. · The Challenges You Get to Accomplish · Do you take pride in ...
-
Senior Client Implementation Specialist
hace 1 semana
HSBC Guadalajara, México-Job description · If you're looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you'll be. · HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries ...
Senior Security Operations Center - Guadalajara, Jal., México - Avertium
Descripción
Senior Security Operations Center (SOC) Analyst
Avertium is the managed security and consulting provider that companies turn to when they want more than check-the-box cybersecurity. In today's threat landscape, your not-so-standard processes, workflows, and vulnerabilities require more than just a standard approach to cybersecurity. You need a smarter, stronger approach based on more rigor, more relevance, and more responsiveness. That is why more than 1,200 organizations in every sector from manufacturing to financial services, healthcare to technology and business services to hospitality rely on Avertium for cybersecurity services .
The Sr. Security Operations Center (SOC) Analyst is a trusted technical advisor working with an active Center of Excellence. The Sr. SOC Analyst works closely with the client to provide proactive support assistance to reduce or prevent security issues from occurring on the client network. The Sr. SOC Analyst will administer and maintain security measures focused on application, web and infrastructure security for the client. The Sr. SOC Analyst is responsible for working with key client contacts at multiple levels of the organization to identify and align business and IT Security objectives. As a Sr. SOC Analyst, you will play a pivotal role in overseeing the daily operations of the SOC, guiding a team of Analysts, and ensuring the smooth delivery of cyber security services to our diverse clientele. Your technical expertise, leadership abilities, and strong communication skills will be essential in maintaining the efficiency and effectiveness of our SOC operations.