CSOC System Admin
- Doha, QA
- Contract
Job responsibilities:
· Responsible for overall secure operation, administration, maintenance of tools and solutions used by Security Operations Center (further referenced as SOC). Responsibilities and duties are planned as follows:
· Continuous maintenance of the systems, tools and solutions, as well as any other attached systems used by Security Operations Center; including configuration management and system updates.
· Ensuring the overall health of the SIEM system, ticketing system, and other SOC technology components.
· Manage verification, validation, tuning, health and collection of Security logs.
· Deploy and tune SIEM Use Cases and Rules driven by security intelligence inputs.
· Implementing use cases as required by Security Intel teams.
· Manage and coordinate equipment and system staging, on-boarding, deployment, configuration & troubleshooting.
· Manage user access including user and group permissions updates for all SOC infrastructure solutions.
· Ensuring that log sources are reporting the SIEM platform.
· Generating reports as required by SOC management teams.
· Configuration, management, performance & capacity planning of SOC solution/products.
· Support for POCs for new CSOC technology and advanced capabilities to adopt/implement
· Review CSOC solution/products vendor announcements.
· Should have good knowledge of systems, solutions and security tools and skills as follows:
· Knowledge about MS Windows and UNIX based systems
· Knowledge of various Virtualization Environments.
· Knowledge of Security Solutions like EDR, Email filtering, Vulnerability Scanners etc.
· Familiarity with Active Directory, Kerberos, and authentication mechanisms
· Problem-solving skills to identify issues with systems
· Communication with other teams to resolve issues
· Communication with vendors related to maintenance of the SOC Systems
Required certifications:
· System administration (IBM, Microsoft, Vmware, Nutanix..etc.)
· Industry certifications (CompTIA, ITIL 4 Foundation... Etc)