SOC Analyst
Remote
1 year contract h1b US GC EAD
Only send LEGIT not Fakes
Note: current SIEM technology is Qradar and SOAR is Google.
Requirements:
• SIEM rule development and optimization to align with threat landscape and based on internal trends of telemetry, alerts, log sources, user-based, and service-based patterns.
• Experience leveraging Mitre ATT&CK framework, and familiarity with other alternative attack frameworks and threat models.
• Familiar with adversary Tactics, Techniques, and Procedures (TTPs), to identify opportunities to improve the effectiveness of existing detection rules and logic. Develop methodologies to maintain and maximize the integrity and effectiveness of existing alerting.
• Fine-tune detection rules to minimize false positives and negatives, optimizing actionable event accuracy.
• Develop queries, dashboards, reports, and knowledge objects to translate SIEM rule development and optimization.
• Collaborate with SIEM engineers to translate and request rule development and optimization recommendations.
Phone : 630-741-4462| Email: [email protected]
INR 40 -47