The Cybersecurity Operations (CSOC) Defender position will be specific to morning watch (6 AM to 3 PM) and part of Security Risk Advisors’ CyberSOC Team. This role will be involved in the day-to-day, 24x7, operations of the CyberSOC. This is an outstanding opportunity to work alongside experienced information security professionals with a wide variety of cutting-edge tool sets and serving our customers in a wide variety of industry verticals. This opportunity represents an excellent opportunity to break into, or advance in, the cybersecurity field.

REQUIREMENTS

• 1-3 years’ professional experience in IT industry/Network engineering. University graduate and IT crossover applicants are welcome.
• Training provided.
• Excellent organisational skills with strong attention to detail.
• A demonstrated passion for technology.
• Work effectively as part of a team yet function well with independent responsibilities.
• Experience or coursework around incident investigation and forensics, information security and computer networking.
• Interest in taking the initiative for personal growth and development.
• Flexibility to accommodate changing schedules of client and project needs and willingness to work extended hours when needed.
• Strong written and verbal communication skills with a high level of professionalism.
• Bachelor’s degree in Computer Science or equivalent subject matter.
• Willingness to travel.
• Ability to work non-core hours including weekends and early morning shifts
• Knowledge of common Internet protocols and applications.
• Ability to multi-task, prioritise, and manage time effectively.
• Excellent interpersonal skills and professional demeanour.
• Excellent customer service ethos.
  Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

• Eyes on glass security monitoring for threats.
• Respond, investigate, and triage alerts in real-time. Use the latest security monitoring technologies to detect adversaries.
• Use Security Information Event Management tools (SIEM), Endpoint Detection & Response tools (EDR), User Behavior Analysis (UBA), Security Orchestration, Automation and Response (SOAR), Antivirus (AV) and Ticketing systems.
• Conduct threat hunts and Indicator of Compromise (IOC) sweeps.
• Analyze cyber threat intelligence.
• Participate in purple team exercises.
• Document processes and procedures used during investigations.
• Communicate with client contacts and inbound requests for client support.
• Attend training and conferences to level up skills and knowledge.
  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
  This job operates in a professional office environment or remotely as needed/required. This role routinely uses standard office equipment.
  The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to talk and hear. The employee frequently is required to stand; walk; use hands to finger, handle, or feel; and reach with hands and arms. This is a largely sedentary role.