SOC Security Analyst (m/f)

8 dana do isteka
Poslodavac:
Kategorija:
Mjesto rada:
Bratislava, Slovakia
Rok prijave:
06.02.2020.


Johnson Controls is powered by your talent. We are the power behind the customer mission. Together we are building a world that’s safe, comfortable and sustainable. Our diverse global team creates innovative, integrated solutions to make cities more connected, buildings more intelligent and environments more comfortable and secure. We are all about improving outcomes for our partners. Tomorrow needs your talent. Tomorrow needs you. So let’s talk today.

SOC Security Analyst (m/f)
Bratislava, Slovakia

What you will do
This role will perform the administration of Johnson Controls’ (SOC – Security Operations Center) internal operations team responsible for incident response and vulnerability management and other core capabilities. He or she will administer these capabilities by installing and maintaining infrastructure tools and related system software, continuously improving the application through proactively analyzing, and resolving related problems.  He or she will be responsible for service delivery and support within defined operating and service level agreements.

How you will do it

  • Leading SOC Security operations in the performing of all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
  • Monitor and analyze network traffic and security event data.
  • Investigate intrusion attempts and perform in-depth analysis of exploits.
  • Provide network intrusion detection expertise to support timely and effective decision making
  • Conduct proactive threat and compromise research and analysis.
  • Review security events that are populated in a Security Information and Event Management (SIEM) system.
  • Analyze a variety of network and host-based security appliance logs determine the correct remediation actions and escalation paths for each incident.
  • Independently follow procedures to contain, analyze, and eradicate malicious activity.
  • Document all activities during an incident and providing leadership with status updates during the life cycle of the incident.
  • Create a final incident report detailing the events of the incident
  • Provide information regarding intrusion events, security incidents, and other threat indications and warning information to teams
  • Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions.
  • Provide guidance and mentorship to analyst team on investigative and response methodologies.
  • Participates in special projects as required. The SOC Security Analyst is responsible for carrying out all activities regarding SOC policies and SOC procedures.
  • Provide feedback into the security logging and automation platform and processes to decrease threat time to detection and increase Security Operations team efficiency.
Qualifications
What do we look for

The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders. The candidate will be able to execute the Information Security Incident Response and Vulnerability Management strategy defined by leaders. The candidate will demonstrate drive, intelligence, maturity, and energy and will be a proven team leader and security strategist.

Required

  • 3-5 years of security related experience in incident analysis, incident handling, vulnerability management or testing, log analysis, intrusion detection, network operations
  • Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents to technical and non-technical audiences at different seniority levels and interact with customers
  • Ability to create and maintain good business relationships with counter parts, customers and external entities to achieve the security operations management goals
  • Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
  • Strong understanding of adversary motivations including cybercrime, cyber hacktivism, cyber war, cyber espionage and the difference between cyber propaganda and cyber terrorism
  • Strong understanding of security operations concepts such as perimeter defense, kill chain analysis, Threat Intelligence and Threat Profiling
  • Familiarity with network security methodologies, tactics, techniques and procedures
  • Experience with Intrusion Detection Systems (IDS)/ Intrusion Protection Systems (IPS), SIEM and other network defense security tools
  • Understanding of network packet capture and ability to review
  • Experience performing security/vulnerability reviews of network environments
  • Knowledge of network security architecture, understanding of the TCP/IP protocol and remote access security techniques/products
  • Experience with enterprise anti-virus/malware solutions, virus outbreak management and the ability to differentiate virus activity from directed attack patterns
  • Have experience monitoring, detecting and leading response efforts of advanced persistent threats
  • Experience generating and modifying network and host-based Indicators of Compromise (IOC)
Preferred
  • A bachelor’s degree in computer engineering, computer security or computer science discipline
  • Experience in any of the following: leadership skills, security operations, system patching, firewall administration, engineering, system administration on Linux or Windows, BYOD (Bring your own device) management, data loss protection risk assessment and security metrics
  • Experience with any of the following tools & technologies: Splunk, Enterprise Security, Vulnerability Management, Carbon Black, Semantic Antivirus, Tanium, Rapid 7, Phantom or Correlation and Search Development
  • Desired Certifications (but not required): 
  • GIAC Certified Incident Handler (GCIH)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified Ethical Hacker (CEH)
  • Cisco Certified Network Associate Security (CCNA Security)
  • Cisco Certified Network Associate (CCNA)
  • Cisco Certified Network Professional Security (CCNP Security)
  • Cisco Certified Network Professional (CCNP)
  • Server Platform Certifications (Microsoft, Linux)
Benefits
Besides a very pleasant and international work environment Johnson Controls offers various opportunities for future growth, regular monthly bonus paid after 6 months of employment, fully covered meal vouchers, monthly free workplace massage, winter vitamin package, onsite FIT days and a flexible benefit allowance so you can choose to tailor the rest of the benefits to suit your individual needs.

You will be based in our newly opened offices in the vibrant city center close to the river and Eurovea shopping center. The onsite facilities include a fitness center, coffee machines, canteen and nursery. If you are relocating to Bratislava to join JCI you will be eligible to receive a housing allowance to help you get your new life set up!

Salary starting from 2700 EUR/month gross (plus a monthly bonus) based on relevant experience.

Flexible working options will be considered within this role as well as we provide an excellent trainings in order to enhance and develop a skillset within a tools we work with.

This salary is our minimum advertised salary. We value each and every employee who joins Johnson Controls, therefore insuring our compensation package aligns with your professional qualifications and competencies to the open position you are selected for.

Who we are
Johnson Controls is powered by your talent. We are the power behind the customer mission. Together we are building a world that’s safe, comfortable and sustainable. Our diverse global team creates innovative, integrated solutions to make cities more connected, buildings more intelligent and environments more comfortable and secure. We are all about improving outcomes for our partners. Tomorrow needs your talent. Tomorrow needs you. So let’s talk today.



Location: Bratislava, Slovakia
functions: IT & Telecommunication
statute: Permanent full-time
experience: Entry level