ASM Expert

الوصف الوظيفي
Qualifications & Certifications:

Looking after the day to day activities of security monitoring and incident handling to ensure that all raised incidents are being handled swiftly and up to customer satisfaction. enriching the security events with business context, business impact and threat operations, monitoring and event intelligence

BA/BS or MA/MS in Engineering, Computer Science, Information Security, or Information Systems required and 5+ years of experience in one or more of the following areas: proactive and reactive hunt techniques, zero-day exploit activities, malware identification
3+ years of experience leading high-functioning teams

Expert knowledge of network monitoring and network exploitation techniques
Experience with common attack vectors, including advanced adversaries (nation state/financial motivation)

Knowledge around common web application attacks including SQL injection, cross-site scripting, invalid inputs and forceful browsing
Knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB ▪Strong written communication skills

Required certifications include, Security+, CEH, GCIA, GCIH, CISSP or similar Experience working with cyber security tools and software such as Splunk, Symantec End Point, TrendMicro Antivirus, McAfee Web Gateway, Checkpoint Firewalls, Bluecoat, Sourcefire, Active Directory, or relevant cyber security assets

المهارات
Key Responsibilities:

Analyze security events to verify incidents and their potential impact and risk to the clients.

Prepare and share incident analysis form to initiate response to validated events by engaging the required teams or resourcestoaddress the security incidents.
Respond to IT Security incidents within the defined SLA.

Perform detailed analysis of incidents in order to gather more information on the incidents.

Identify mechanism to contain and eradicate the incident.

Once the incident has been contained and eradicated, ensure that proper recovery actions are performed.

Investigate raised IT security incidents and initiate resolution by engaging the responsible teams, and escalating attention as needed to address threats and close risks.
Utilize ticketing tool for efficient tracking of the incidents and investigation requests.
Coordinating investigations of suspected attacks and breaches of security and Perform forensic investigation and analysis as required following industry best practices
Perform a root cause analysis of the incident to ensure that the same vulnerabilities are not exploited in the future. Share the lessons learned with the SOC team.

Supporting in documenting new playbooks and updating existing ones

تفاصيل الوظيفة
منطقة الوظيفة دبي, الإمارات العربية المتحدة
قطاع الشركة تكنولوجيا المعلومات
طبيعة عمل الشركة شركة توظيف
الدور الوظيفي تكنولوجيا المعلومات
نوع التوظيف دوام كامل
الراتب الشهري غير محدد
عدد الوظائف الشاغرة غير محدد
المرشح المفضل
المستوى المهني متوسط الخبرة
منطقة الإقامة الإمارات العربية المتحدة
الشهادة بكالوريوس/ دبلوم عالي

*** تقدم على الرابط التالي : Apply on the following link ***
https://www.bayt.com/ar/uae/jobs/asm-expert-3894608/