شرح شغل:
کارشناس امنیت زیرساخت وظیفه تحقیق، توسعه و نگهداری زیرساخت های مربوط به حوزه امنیت از جمله ثبت، انتقال و ذخیره صحیح لاگ و همچنین ارزیابی آسیب پذیری زیرساخت های سرویس را برعهده دارد. مقاوم سازی زیرساخت ها و پیکربندی و نگهداری زیرساخت های سرویس مرتبط با حوزه امنیت اطلاعات را میتوان از دیگر وظایف این شغل برشمرد.
Threat Detection & Analysis: Monitor security events, triage alerts, and perform in-depth incident analysis.
Incident Response: Lead investigations, coordinate with IT teams for incident containment and remediation, and document incidents.
Security Monitoring & Improvement: Fine-tune monitoring tools, develop detection rules, and enhance incident response processes.
Collaboration & Communication: Work with IT and security teams, mentor Tier 1 analysts, and communicate incident details to stakeholders.
Reporting & Documentation: Maintain accurate documentation and prepare reports on SOC activities and incident trends.
Experience: 3+ years in cybersecurity, with at least 1 year in a Tier 2 role.
Skills: Strong understanding of networking, proficiency with security tools (SIEM, IDS/IPS, EDR), and experience in incident response.
Certifications (Preferred): CISSP, CEH, GCIH, CompTIA Security+.
Strong communication, and problem-solving skills.