L3 Principal SOC Analyst

1 mese fa

Rome, Italia Integrity360 A tempo pieno

This position is open to candidates protected by the law 68/99

About Us

Integrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk & Assurance services.

What sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and experience in our company are some of the greatest in the industry and clients remain with Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services.

Job Role / Responsibilities

In this role you will be expected to perform traffic analysis, intrusion analysis and detection of threats based on system alerts and logs. Additional duties would include the authoring of security procedures. You will be required to monitor third party security related websites, forums, and mailing lists for information regarding new threats and vulnerabilities. The security analyst will verify security events as security incidents; correlate and collate the information; and develop, edit, and deliver security reports to enterprise-level customers. The role requires flexibility and the ability to work extra hours when the business calls for it. A good knowledge of Information Security is required for this role. Proactive client services, such as compromise assessments and evaluating and recommending tools and technology for incident response are also in scope. Demonstration of a strong comprehension of malware, emerging threats and adversary TTPs will be critical to success.

Primary Duties/Responsibilities include:

  • Review security events to evaluate the risk they present in the context of the environment they are in.
  • Analyse logs for anomalies in the environment.
  • Perform in-depth investigation on confirmed security incidents.
  • Identify, contain and eradicate threats in the environment.
  • Perform analysis of malicious code and activity.
  • Tuning security toolsets.
  • Document complete details and evidence of investigation and providing reports to incident stakeholders.
  • Responsible for generating reports to the partners and stakeholders showing internal threat landscape.
  • Document work efforts and update the tool documents that are already in place.
  • 24 x 7 on-call support on a rota basis may form part of the role.

Desired Skills

  • Experience working with security event detection tools like IPS, SIEM, DLP, Anti-virus, etc.
  • Ability to perform event correlation, host/ network threat analysis.
  • Ability to manage multiple incidents and make effective decisions under high pressure environment.
  • Experience in performing analysis on network pcaps and documents for malicious activity or codes.
  • Conceptual knowledge in Networks and Network Security.
  • Understanding of Network infrastructure hardware and protocols (TCP/IP, switches, bridges, routers, proxy servers, VPN concentrators).
  • Understanding of Security protocols (IPSec), and encryption technologies (3DES, AES, SHA2, TLS).
  • Understanding of basic security principles such as Confidentiality, Availability, Integrity.
  • Familiar with security best practices.
  • A process of on-going certification for the benefit of the business and for self-development is encouraged.
  • Review the adequacy of the security controls and their ability to protect the information system and its information.
  • Experience with Splunk is a plus.
  • Experience using SIEM & IPS solutions is a plus.
  • Strong Microsoft Word & Microsoft Excel skills required.

Certifications/Qualifications

  • Any of the following accreditations/certification will be highly beneficial:
  • Security industry certifications: GSEC, GCIH, GCFA or similar security certifications.
  • 2+ years in an Incident Handling role or a CSIRT role.
  • Ideal candidates will possess a working knowledge of Intrusion Prevention System (IPS), SIEM, SOAR & DLP.
  • Experience working with threat hunting tools.
#J-18808-Ljbffr

  • Soc Analyst

    3 settimane fa

    Rome, Italia Apprendo s.r.l. A tempo pieno

    Ti piacerebbe far parte di un team giovane e dinamico? Crediamo fortemente nel gioco di squadra dove tutti collaborano tra di loro in funzione dell’obiettivo aziendale. I nostri progetti ti permetteranno di lavorare con clienti del mondo Banking & Finance, Insurance, Automotive, Healthcare e molto altro, tutto senza smettere di imparare mai.Chi...

  • SOC Analyst

    5 giorni fa

    Rome, Italia Hays A tempo pieno

    La tua nuova aziendaPer una realtà operante nel settore della Cyber Security, siamo alla ricerca di una figura da SOC Analyst.Il tuo nuovo ruoloLa risorsa, allocata direttamente nel Cyber Security BlueTeam, si occuperà dell'analisi e valutazioni delle minacce, contribuendo anche alla creazione e implementazione delle strategie di risposta.Di cosa hai...

  • L2 SOC Analyst

    4 settimane fa

    Rome, Italia 3240 Kyndryl Italia S.P.A. A tempo pieno

    Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The...

  • QA Analyst

    3 settimane fa

    Rome, Italia Dacomat srl A tempo pieno

    Opportunità di lavoro: QA Analyst | Roma (2-3 giorni a settimana in sede) Cerchiamo un QA Analyst con un forte background da Business Analyst Requisiti principali: Esperienza con Zephyr per la gestione dei test. Competenze in test manuali. Conoscenza di Jira per la gestione dei progetti. Inglese almeno livello B1 per comunicazioni efficaci. Disponibilità...

  • Business Analyst

    3 settimane fa

    Rome, Italia INTERMETA SRL A tempo pieno

    Azienda leader nell’assistenza commerciale e tecnica alle aziende, operante nel settore Oil & Gas, Raffinazione, Petrolchimico ed Energia, ricerca una figura da inserire urgentemente nell’organico in qualità di BUSINESS ANALYST. La società è attualmente impegnata nel mercato italiano e messicano.Requisiti:Buona conoscenza della lingua inglese e...

  • Soc analyst 1

    1 settimana fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • Soc analyst 1

    6 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • SOC Analyst 1

    1 settimana fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • Soc analyst 1

    6 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities- Monitor and ensure the effective implementation and execution of company’s security measures and policies- Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats- Detect any suspicious activity like intrusion, attack or unauthorized access- Test the effectiveness of company security...

  • SOC Analyst 1

    1 settimana fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • Soc analyst 1

    7 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • Soc analyst 1

    5 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities- Monitor and ensure the effective implementation and execution of company’s security measures and policies- Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats- Detect any suspicious activity like intrusion, attack or unauthorized access- Test the effectiveness of company security...

  • Soc analyst 1

    5 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • Soc analyst 1

    1 settimana fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities - Monitor and ensure the effective implementation and execution of company’s security measures and policies - Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats - Detect any suspicious activity like intrusion, attack or unauthorized access - Test the effectiveness of company...

  • SOC Analyst 1

    1 settimana fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities- Monitor and ensure the effective implementation and execution of company’s security measures and policies- Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats- Detect any suspicious activity like intrusion, attack or unauthorized access- Test the effectiveness of company security...

  • SOC Analyst 1

    2 settimane fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities- Monitor and ensure the effective implementation and execution of company’s security measures and policies- Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats- Detect any suspicious activity like intrusion, attack or unauthorized access- Test the effectiveness of company security...

  • Soc analyst 1

    6 giorni fa

    Rome, Italia Elettronica S.p.A. A tempo pieno

    Main Responsibilities- Monitor and ensure the effective implementation and execution of company’s security measures and policies- Detect and correct potential vulnerabilities by monitoring network data traffic and searching for threats- Detect any suspicious activity like intrusion, attack or unauthorized access- Test the effectiveness of company security...

  • Data Analyst

    3 settimane fa

    Rome, Italia AC&D Technologies A tempo pieno

    AC&D Technologies è una società di Consulenza, System Integration e Sviluppo applicativo nel Settore ICT, specializzata nella progettazione e nell’implementazione di soluzioni specifiche, che unisce le principali e più recenti tecnologie con competenza e profonda conoscenza del mercato.Per sostenere la crescita della nostra azienda cerchiamo un Data...

  • Security Analyst Senior

    1 mese fa

    Rome, Italia ENERGENT S.P.A. A tempo pieno

    Il Gruppo EIES, composto da Energent, I&M, Enway e Skienda è una realtà di consulenza e di prodotto consolidata nel mercato delle soluzioni e dei servizi ICT.Per ampliamento dell’organico ricerchiamo figura di Security Analyst Senior.Competenze richieste:Certificazione “Splunk SOAR Certified Automation Developer”;Conoscenza dei processi di incident...

  • Security Analyst Senior

    1 settimana fa

    Rome, Italia ENERGENT S.P.A. A tempo pieno

    Il Gruppo EIES, composto da Energent, I&M, Enway e Skienda è una realtà di consulenza e di prodotto consolidata nel mercato delle soluzioni e dei servizi ICT.Per ampliamento dell’organico ricerchiamo figura di Security Analyst Senior.Competenze richieste:Certificazione “Splunk SOAR Certified Automation Developer”;Conoscenza dei processi di incident...