مهارتهای فنی و تخصصی:
مهارتهای فردی:
تجربیات و گواهینامه های مورد نیاز:
Carrying out the necessary measures regarding the Incident Handling process in the phases of Detection (Deep Investigation), Containment, Eradication, Recovery and Post Incident based on the NIST document 612-800) Identifying attacks with SIEM tools, developing new scenarios for SIEM tools to identify attacks) < br>Continuous tuning of SIEM tool scenarios
Analysis of vulnerabilities identified by the Vulnerability scanner tool and providing suggested solutions to mitigate vulnerabilities
Providing suggested solutions to mitigate identified attacks at the network or service level
Providing suitable solutions in case of discovering misconfigurations at the service or network level
Analyzing raw logs to extract required fields at different levels of the operating system, software, service and hardware
Ability to develop a new scenario based on a Specific IOC or APT
Familiarity with MITER and APT attacks
Familiarity with OWASP
Familiarity with Incident Response processes
Technical and specialized skills:
Mastery of SIEM specialist skills
Proficiency in CCNA R/S (or Equivalents)
Proficiency in SANS SEC 504 (OR CEH)
Proficiency in SANS SEC 542 or 560
Proficiency in Vulnerability Analysis
Proficiency in Threat intelligence research
Sufficient knowledge in the field of Windows and Linux systems
Personal skills:
Organized, committed and highly responsible
Communication, ability to understand and respond to complex issues, careful attention to details< br>Enthusiasm for learning and discovery
Having the spirit of teamwork, having effective communication skills and persistence in following up to achieve results
High ability to understand English texts
Required experience and certifications:
-Bachelor's or Master's degree in computer science or information technology/computer engineering/information security. to be
* Familiarity with payment industry (PSP) is an advantage*
این آگهی از وبسایت ایران تلنت پیدا شده، با زدن دکمهی تماس با کارفرما، به وبسایت ایران تلنت برین و از اونجا برای این شغل اقدام کنین.