SOC Lead Engineer

Overview

On Site
Depends on Experience
Contract - W2

Skills

Data Link Layer
DLP
Collaboration
Incident Management
Endpoint Protection
IPS
IDS
IT Service Management
Firewall
Malware Analysis
SIEM
Vulnerability Scanning
Workflow
Network

Job Details

SOC Lead Engineer

San Jose, CA

below is the JD for the same we need a person with around 5-10 years of relevant experience

Key Responsibilities for Security Operations Engineer

Monitor security alerts from various security tools (SIEM, DLP, EDR, IDS/IPS, firewalls, etc.).

Detect potential security incidents such as unauthorized access, malware activity, and

abnormal behavior.

Review and analyze security event logs and alerts to identify security threats.

Triage the incidents to determine their severity and impact.

Follow defined workflows and playbooks to respond to security incidents.

Maintain and update incident logs and tracking systems across SIEM and ITSM.

Escalate unresolved / complex incidents that require further investigation or specialized

skills to L2 / Incident response teams.

Collaborate with client s other IT teams (e.g., network, systems, and application teams) to

resolve security issues.

Assist with the identification of security vulnerabilities in systems, networks, and

applications. Perform vulnerability scanning through tools. Assist with the closing of

vulnerabilities.

Monitor the health and status of security systems, including firewalls, anti-virus software,

and endpoint protection.

Generate daily, weekly, or monthly reports on security incidents and activities for senior

management Document security incidents and actions taken in accordance with incident

response policies.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.