Role overview:
Job Title: SOC Analyst
Location: Roma
Smartworking: possibile per questa posizione
Activities:
* Security Event Management:
o Analyze and investigate security alerts to identify threats and/or suspicious activities performed on IT systems and networks
o In case of alerts that need to be investigated (events), open the case and perform triage to categorize and assign the correct severity
o Understand the magnitude and impact of the event, forward the case to other teams
o Perform false positives continuous tuning
o Produce periodic reporting about the managed events
* Security Incident Management
o Analyze in depth the events associated to a security incident, identifying indicators of compromise (IOCs) and evaluating the attack magnitude identifying the impacted systems/assets and networks
o Execute activities (or support the proper IT Operations teams) for incident containment and service recovery
o Oversee and configure security monitoring tools
o Gather evidences of the incident and draft the Incident Report
* Security Platforms Delivery and Operations
o Manage and continuously evolve the Security Platforms used by the SOC (SIEM, UEBA, SOAR, Antivirus/EDR…)
Requirements:
* English language fluent (preferred: C1/C2 or English mother tongue)
* Availability to work on shifts
* Strong orientation to problem solving
* Good knowledge of the main IT processes, in particular Security Operations processes and procedures
* Good knowledge of the Office tools (in particular Excel, Powerpoint, Word)
Professional Experience/Seniority:
At least two years of experience in SOC and cybersecurity, preferably performed in international contexts.