Security Operation Center

Security Operation Center

Tokopedia
2-4 years
Not Specified

Job Description


Overview :
A Security Analyst will have proven their skills in Information Security, Information Systems, Packet Analysis, and Data Loss Prevention. Candidates must have a background that should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring, cloud security and vulnerability management. Candidat also should have an understanding of cybersecurity practices.
Role Responsibilities:

  • The security specialist is responsible for conducting information security investigations as a result of security incidents identified by the tier 1 security analyst who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email, etc)

  • Act as a point of escalation for tier 1 SOC security analysts in support of information security investigations to provide guidance and oversight on incident resolution and containment techniques

  • Document incidents from initial detection through final resolution

  • Participate in security incident management and vulnerability management processes

  • Participate in evaluating, recommending, implementing (as deemed necessary), and troubleshooting security solutions and evaluating IT security of any new systems on Tokopedia.

  • Works as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats
    Requirements:

    • 2-4 years previous Security Operations Centre Experience in conducting security investigations

    • Bachelor's degree in Computer Science

    • Ability to analyze data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents

    • Strong knowledge of IT including multiple operating systems and system administration skills (Windows, Solaris, Unix, Mac, etc.)

    • Must have a deep understanding of the nature of security threats and their classification

    • Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, cloud products and enterprise Antivirus products

    • Strong understanding of security incident management, malware management and vulnerability management processes

    • Security monitoring experience with one or more SIEM technologies

    • Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP

    • Understanding of programming and scripting such as Python, Perl, Bash, PowerShell, C++, etc

    • Excellent written and verbal communication skills

    • Excellent organization, time management, and attention to detail

    • Must be action-oriented and have a proactive approach to solving issues

    • Ability to work individually and as part of a team

Job Details

Employment Types:

Industry:

Other

Function:

IT

About Tokopedia

Similar Jobs

People Also Considered

Data Not Available

Career Advice to Find Better

Simple body text this will replace with orginal content