Ph3Overview /h3pJoin to apply for the bL2 SOC Analyst /b role at bIntegrity360 /b /pp“This position is open to candidates protected by the law 68/99” /ppAbout Us /ppIntegrity360 is one of Europe’s leading cyber security specialists operating from office locations spread out across Europe, providing a comprehensive range of professional, support and managed cyber security services for our 300+ clients. With four top-class Security Operation Centers, we offer a complete end-to-end security services covering our clients’ security from every angle. Our services include Managed Security, Cyber Security Testing, Incident Response, Security Integration, PCI Compliance and Cyber Risk Assurance services. /ppWhat sets Integrity360 apart is our excellent team of people that drive the business forward. The company was founded with a focus on technical expertise and that philosophy remains today. The skills and experience in our company are some of the greatest in the industry and clients remain with Integrity360 because they can rely on and trust us to go above and beyond to ensure their needs are met. Listed multiple times on Gartner Market Guides for Managed Security Services. /p h3Job Role / Responsibilities /h3pIn this role you will be expected to analyse a range of alerts and incidents, identifying threats and attacks performed by Threat Actors ranging from cyber criminals, ATPs, and Nation States. You will leverage various threat intelligence streams to enhance your understanding of emerging threats and vulnerabilities used by Threat Actors, providing customers with your insight and experience. You will act as a core investigator for security incidents and alerts, escalating to senior SOC staff when a true positive has been identified. A successful security analyst will verify security events as security incidents; correlate and collate the information; and effectively escalate their findings and recommendations internally, or to the customer. /ppThe role requires flexibility and the ability to work as part of a wider shift pattern, additionally, there may be an on-call aspect required. A good knowledge of Information Security is required for this role. Proactive client services, such as compromise assessments and evaluating and recommending tools and technology for incident response are also in scope. Demonstration of a strong comprehension of malware, emerging threats and adversary TTPs will be critical to success. /ppbPrimary Duties/Responsibilities include: /b /pulliAnalyse security alerts and incidents, following defined investigation processes to determine the risk they present and impact to customers. /liliPerform ad-hoc analysis of varied logs, identifying anomalies in customer environments. /liliPerform in-depth investigation on confirmed security incidents, assisting senior SOC analysts to mitigate threats. /liliIdentify threats, perform mitigating actions to contain and eradicate threats in the environment. /liliIdentify and document tuning opportunities for senior SOC analysts to perform /liliAssist in the report creation process, performing enriching queries and investigations to help produce a high quality incident report for core stakeholders. /liliAssist in development of varied customer reports such as Emerging Threat reports, Incident Response reports, consistent MDR reports. /liliAssist in CSOC continuous improvement and development initiative to maintain and improve core processes, SOPs, and documentation. /li /ul h3Desired Skills /h3ulliExperience working with security event detection tools like IPS, SIEM, DLP, Anti-virus, etc. /liliAbility to perform event correlation, host/ network threat analysis. /liliAbility to manage multiple incidents and make effective decisions under high pressure environment. /liliExperience in performing analysis on network pcaps and documents for malicious activity or codes. /liliConceptual knowledge in Networks and Network Security. /liliUnderstanding of Network infrastructure hardware and protocols (TCP/IP, switches, bridges, routers, proxy servers, VPN concentrators). /liliUnderstanding of Security protocols (IPSec), and encryption technologies (3DES, AES, SHA2, TLS). /liliUnderstanding of basic security principles such as Confidentiality, Availability, Integrity. /liliFamiliar with security best practices. /liliA process of on-going certification for the benefit of the business and for self-development is encouraged. /liliReview the adequacy of the security controls and their ability to protect the information system and its information. /liliExperience with Splunk is a plus. /liliExperience using SIEM IPS solutions is a plus. /li /ul h3Certifications/Qualifications /h3ulliSecurity industry certifications: SEC+, CYSA+, Net+, SC-200, AZ-500, AZ-900, Splunk Power user /liliA working knowledge of Intrusion Prevention System (IPS), SIEM, SOAR DLP is a nice to have. /liliExperience working with threat hunting tools is nice to have. /li /ul h3Integrity360 Employee Benefits (Italy) /h3pAt Integrity360 we aim to reflect what’s important through the benefits we offer. We survey our people regularly and encourage discussions around these tops so we can understand what really makes a difference. Our benefits priorities are physical, mental, and financial wellbeing. /pp· Health Insurance (Metasalute Piano E). /pp· Ticket Restaurant at 9.00 euro per working day (Sodexo). /ppWhat we offer: /pp· Twice yearly salary reviews /ppbOther benefits include: /b /pp· 20 days’ annual leave + 8 hours of work permit per month. /pp· Our LD program, we work with various platforms including Udemy, Preply Pluralsight, HTB ensuring our people are up to date with their industry knowledge and further opportunities to upskill. /pp· Fully funded certifications. /p h3Seniority level /h3ulliAssociate /li /ul h3Employment type /h3ulliFull-time /li /ul h3Job function /h3ulliInformation Technology /liliIndustries IT Services and IT Consulting /li /ul pReferrals increase your chances of interviewing at Integrity360 by 2x /p h3Sign in to set job alerts for “Security Operations Center Analyst” roles. /h3 /p #J-18808-Ljbffr