SOC Senior Analyst

Al-Ahli Bank Of Kuwait

Key Accountabilities:
• Act upon security & operational issues/incidents within a 24x7 Managed Security Service Environment.
• Monitor, analyze and prioritize security events using a SIEM Solution and any other security monitoring solutions.
• Work as Tier 1 to Investigate and analyze security incidents to determine the root cause, impact, and potential remediation actions.
• Stay up to date with the latest cybersecurity threats and trends and implement necessary security measures to protect against them.
• Collaborate with other IT teams and stakeholders to ensure successful incident response and remediation.
• Propose, analyze, and introduce new technologies or products to increase the information security level (based on defined risks)
• Coordinate and support the containment and eradication of security incidents.
• Provide recommendations to internal and external parties in order to reduce the impact of security incidents.
• Ensure that security significant logs are available in SOC monitoring tools for analysis and investigation.
• Work as Tier 1 to Investigate and remediate security incidents based on playbooks and individual analysis leveraging data from different source and tools
• Implement/document security operation center processes and procedures.
• Ensure applying SOC recommended security controls/countermeasures on security devices/system.
• Create of reports, dashboards, metrics for SOC operations and presentation to head of Security operation center
• Follow up Incident resolutions for various offenses/incidents.
• Develop and update the security monitoring use cases to ensure detecting security threats and offenses.
• Ensure compliance with SLA, process adherence and process improvisation to achieve security operational center objectives.
• Monitor Information Security Programs based on NIST/ISO 27001 security standards overseeing all IT security & compliance initiatives across all business units.
• Perform threat management, threat modelling, identify threat vectors and develop use cases for security monitoring.
• Continually assess the overall effectiveness of Security Monitoring solutions.
• Execute incident response plans to effectively contain and mitigate security incidents.
• Conduct cyber security threat intelligence activities.
• Develop and update SOC team s playbook and submit for approval from head of security operation center.
Forensic Analysis
• Forensically analyse end user systems and servers found to have possible indicators of compromise.
• Analysis of artifacts collected during a security incident/forensic analysis.
Cyber Security Assessment
• Conduct Vulnerability assessment, penetration testing or any other cyber security assessment activities on all bank s systems.
Threat hunting
• Conduct Threat Hunting process, the investigation of possible anomalies to find any yet-to-be-discovered malicious activities that could lead to a full-blown breach
• Managing the proactively searching for cyber threats that are
Experience
• At least 1-3 year s professional IT experience
• Knowledge of Information Security Standard IS0 27xx, PCI
• Incident Management and Response
• Advanced Experience in security device management and SIEM
• Knowledge in Security Scans.
• Good Analytical skills, Problem solving and Interpersonal skills.
• Knowledge of security concepts such as cyber-attacks and techniques, threat vectors.