ing Computing Security Incident Response Center– Information Technology & Payment Systems Sector
Posted in: 14/08/2017 Expire in: 27/08/2017Qualifications:Education/Training:
BS in Computer (Communications) Engineering / Science (or other technical field), or MS in Computer Engineering / Science (or related technical field), or equivalent combination of training and experience.Certifications (Preferred):
Certified Information Systems Security Professional (CISSP), and/or Certified Information Systems Auditor (CISA) and/or Certified Ethical Hacker (CEH) and /or GIAC certificates, Security+ and/or Offensive Security Certified Professional (OSCP).Experience:
Professional experience as an information security engineer, network security architect, information systems auditor, information systems analyst, or similarly technical occupation.
Required Years of experience: 12+ years in the IT field and 6 + years in Information security.
Responsibilities/ Requirements:Experience with and applied knowledge in are highly desired:
Previous experience analyzing network traffic and IDS events for malicious intent.
Experience working in a SOC environment.
Strong knowledge of Cyber Threat Intelligence principles, including the ability to analyze threat campaign(s) techniques, lateral movements and indicators of compromise
Understanding of networking essentials including data flows, architecture, protocols, and traffic analysis
Working proficiency with IDS, IPS, firewall, DDoS mitigation, log management, and other devices
Understanding of exploits, vulnerabilities, network attacks and malware
Specific experience with SIEM-Based log monitoring technologies and tools (e.g., SPLUNK ES, Qradar and the ability to develop content, such as scripts, use cases for SIEM queries
Previous experience providing detection and response to security events and incidents
Experience with common penetration testing toolsets (Metasploit framework, vulnerability scanners, web application scanners, Nmap are highly preferable.
Experience with common penetration testing methodologies and tactics (PTES, OWASP testing guide, etc.)
Experience in virtualizes computing such as VMware
Different types of programming languages are highly desired Python, C، C ++، C، JAVA.
Experience with administration of different types of O.S such as (Unix, Linux, Mac, Windows) are highly desired. Skills/Abilities: Must exhibit the following skills and abilities:
Understanding of information technology, security assessment methods, and telecommunications systems
Working knowledge of network interoperability, cyber security, and survivability issues, including cyber security best practices and standards
Ability to conduct analytical studies and investigations
Reasoning and problem-solving skills
Ability to work independently with limited supervision
Ability to interact effectively with diverse constituencies internally and externally
Ability to work well as a member of a cooperative team; ability to work in a matrix organizational structure
Ability to recognize and deal appropriately with confidential and sensitive information
Leadership and mentoring skills