Sr. Security Analyst: Incident Analyst (Weekdays 2nd shift)
Extreme Networks provides networking solutions to power your business. Our flexible and scalable cloud networking services help optimize your network infrastructure.
There has never been a better time to join Extreme. After three acquisitions extending our portfolio and go-to-market strategy, we have seen enormous opportunity and growth within the region. Aside from being a Technology Leader in the Gartner Magic Quadrant, we also promote a culture that embraces diversity, inclusion, and equality in the workplace.
Job Summary: As a key member of the Information Security Operations team, you will be primarily responsible for monitoring and responding to security events and tickets; investigating root cause analysis of issues and updating threat feeds and alerts; and managing the SIEM (Security Information and Event Management) solution. Additionally, you will support the wider information security and IT teams as necessary. This role will include on-call shift work over weekends.
Job Requirements:
* Continuously monitor SIEM Console, ServiceNow incident queues, and SecOps dashboards for alerts, tickets, and issues.
* Notify system owners and escalate security incidents per the incident response procedures.
* SIEM alert tuning and configuration.
* Monitor system performance and health.
* Tuning and policy enhancement for SIEM and other SecOps tools.
* Troubleshoot SIEM and SOC operational issues.
* Assist in cases of major outbreaks or critical incidents.
* Perform deep dive incident analysis by correlating data from various sources.
* Respond to all reported security incidents.
* Follow up with teams for incident closure.
* Maintain incident records as per guidelines.
* Capture and protect evidence related to incidents.
* Develop IoC (Indicators of Compromise) related to new threats.
* Conduct traffic and malware analysis.
* Perform incident damage assessments.
* Update stakeholders about security incidents progress.
* Strong interpersonal communication skills.
* Good verbal and written communication skills.
* Ability to analyze problems and create solutions while maintaining confidentiality.
* Prioritize projects with a sense of urgency to meet deadlines.
* Follow verbal and written directions.
* Self-starter able to work independently and in a team.
* Utilize critical thinking skills and judgment.
* Work positively and professionally with diverse personalities.
* Accept constructive criticism.
Working Schedule
* Weekdays between 14:30-23:30 GMT
Experience
* Background/experience in security operations.
* Ability to work autonomously and be self-motivated.
* Experience using and tuning a SIEM product.
* Experience with Microsoft security tools.
* Experience in using security incident response frameworks & Mitre framework.
* Reasonable accommodation may be made to enable individuals with disabilities to perform essential functions.
Extreme Networks, Inc. (EXTR) creates effortless networking experiences that enable advancement. We leverage machine learning, artificial intelligence, analytics, and automation. Over 50,000 customers globally trust our end-to-end, cloud-driven networking solutions and rely on our top-rated services and support. We encourage people from underrepresented groups to apply. Come advance with us!
#J-18808-Ljbffr