Tier 2 Security Analyst

JOB ACCOUNTABILITIES / KEY RESULT AREA

 

·         Handle security events and alerts escalations from Tier-1 Security Analysts, swiftly investigate and validate each events and alerts.

 

·         Perform searches for deep-dive analysis by correlating data from various sources.

 

·         Determine if a critical system or data set has been impacted / compromised.

 

·         Make critical decisions to escalate problems to an engineering group or to SOC Manager if the problem deems it.

 

·         Advise on remediation.

 

·         Perform containment, eradication, recovery.

 

·         Provide support for new analytic methods for detecting threats.

QUALIFICATION& COMPETENCIES

 

·         Must possess 2-3 years’ relevant technical work experience in Systems / Network Security implementation

 

·         Must possess 2-3 years’ operational experience in a SOC or CERT

 

·         In-depth understanding and hands on experience in many of the following areas: firewalls, proxies, IDS/IPS, VPN, virtualization, authentication technologies, content filtering, DLP, PKI and encryption technologies.

 

·         Must have experience with security-related technologies

 

·         including active directory, host-based firewalls, host-based intrusion detection systems, application white listing, server configuration controls, logging and monitoring tools, antivirus, and antivirus systems, network monitoring and network-based security facilities.

 

Introduction to BNM SOC Shift Schedule

Type of Shift Schedule: 24 x 7

            In a 24x7 SOC environment, two teams of morning shift (team #1 and #2) and another two of night shift (team #3 and #4) are needed to run around the clock in the SOC to protect the organization’s information assets.

2.              Glossary:

·         T2-SA = Tier-2 Security Analyst

3.              BNM SOC consists of one T2-SA on each shift.

4.              In total, BNM SOC would need:

·         Four T2-SAs (1 T2-SA * 4 shift teams)

5.              Shift team #1 works for twelve hours for two days continuously (Mon and Tue) and then they will take a two-day break subsequently. While they are taking break (Wed and Thu), shift team #2 will be on-duty to cover them so that nobody would be burnout for working long hours. Same working pattern goes to the night shift.

6.              Each SA will work for 15 to 16 days per month.

·         15-day * 12-hr = 180hrs

·         16-day * 12-hr = 192hrs

7.              Shift team #1 and #2 will be working in the morning shift for two-month long and then switch to night shift in the subsequent months. This allows shift team#3 and #4 to have the chance to enjoy the bright sun and morning breeze. The switching will occur every 2-month.