Cette offre d'emploi n'est plus disponible
À propos
Hit Apply below to send your application for consideration Ensure that your CV is up to date, and that you have read the job specs first.
* Monitor work queues for new escalations from the L1/L2 team
* Triage cases when there are multiple escalations in the queue
* Perform deep-dive analysis on escalated cases
* Uses Threat intelligence and IOA/IOC data to identify source and impact of attack
* Clearly document your investigations as they progress and regularly add case notes to the case to maintain situational awareness
* Complete the investigations and recommend remediations for low and medium severity security incidents
* Initiate a war room for confirmed or suspected critical security incidents and follow the documented incident response plan
* Complete Post Incident Review (PIR) documentation for all medium and higher severity security incidents
* Monitor work queues for new cases requiring review
* Triage case reviews as required
* Review cases completed by L1 analysts for quality, accuracy, and completeness
* Immediately investigate any you suspect to be true security incident falsely closed in L1/L2
* Provide feedback, guidance and mentoring to L1/L2 analysts where appropriate to improve their initial investigation skills
* Recommend exceptions or changes to detection rules to reduce false-positive detection
* Time permitting, perform proactive reviews of open and acknowledged events currently being triaged by the L1 team
* Assist the peer L3 team in scheduled threat hunting activities
* Develop queries or other methods for detecting new or previously undetected exploits, tactics, and techniques.
Work with the Engineering team to implement these detections.
* Maintain situational awareness by:
* Being aware of new and emerging threats, including vulnerabilities, threat actors, tactics, and techniques
* Being aware of factors that might place a customer at higher risk of attack, such as holiday long-weekends, industrial action, and geopolitics
* Actively participate in end-of-shift handovers of ongoing and recently closed investigations
* Keeping meticulous notes of investigations of confirmed and suspected security incidents
* Reviewing vulnerability scan data for all customer sites monthly, and being aware of any areas of additional risk (accepted or new) to the organisation
* Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field or equivalent experience desired.
* Generally,
**5+ years in SOC, Incident Response, or Threat Analysis
** roles.
* Strong knowledge & understanding of common attack vectors and threat actor tactics, techniques, and procedures
* Knowledge of
**Elastic SIEM
** is preferred.
If not experience on any of the other
**SIEM
** tools like
**Sentinel, Splunk, QRadar, LogRhythm
*** Relevant industry qualification where applicable.
* Excellent verbal and written communication skills in language to be supported.
* Advanced troubleshooting skills in a technical environment.
* Excellent analytical and problem solving skills.
* Advanced Software and hardware knowledge of computing, storage and peripheral devices.
* Specific knowledge and training with the company's products.
Knowledge of multiple product lines (for example, proactive, reactive, storage, enterprise systems, tier 2 or 3 support, etc.).
* Advanced proficiency with case management databases and tools.
* Superior customer service skills.
* Phone and remote support experience.
E-support experience, knowledge and resolution ability.
* Ability to solve and document solutions for usage of other technicians and customers.
* Ability to mentor new agents.
* Ability train peers on solutions.
* Ability to take full ownership for resolution with escalated customers.
* Ability to lead technical action plans.
* Lead or provide expertise to teams or projects.
* Highly Developed knowledge of more complex solutions.HPE is an Equal Employment Opportunity/ Veterans/Disabled/LGBT employer.
We do not discriminate on the basis of race, gender, or any other protected category, and all decisions we make are made on the basis of qualifications, merit, and business need.
Our goal is to be one global team that is representative of our customers, in an inclusive environment where we can continue to innovate and grow together.
Please click here: .
**Hewlett Packard Enterprise
**Technology innovation that fosters business transformation.We help customers use technology to slash the time it takes to turn ideas into value.
In turn, they transform industries, markets and lives.Some of our customers run traditional IT environments.
Most are transitioning to a secure, cloud-enabled, mobile-friendly infrastructure.
Many rely on a combination of both.
Wherever they are in that journey, we provide the technology and solutions to help them succeed.
**COVID Policy
**The health and safety of our team members, customers and partners is paramount at HPE.
Accordingly, be fully vaccinated against COVID-19 by the employment start date where permitted by law.
Exemptions based on medical, religious or other grounds will be processed and approved in accordance with local laws.
**Standards of Business Conduct (SBC)
**The Hewlett Packard Enterprise Standards of Business Conduct (SBC) embody the fundamental principles that govern our ethical and legal obligations to Hewlett Packard Enterprise.
They pertain not only to our conduct within the company but also to conduct involving our customers, channel partners, suppliers and competitors.Read more about how we
**Equal Opportunity Employer (EEO)
**Hewlett Packard Enterprise provides equal employment opportunity to any employee or applicant without regard to sex, gender, color, race, ethnicity, religion, creed, national origin, ancestry, citizenship, age, marital status, sexual orientation, gender identity and expression, physical or mental disability, medical condition, pregnancy, protected veteran status, uniformed service status, familial status, genetic information, political affiliation, or any other characteristic protected by federal, state, or local law.
Please click here:
**.
**If you’d like more information about your EEO right as an applicant under the law, please click here:
**E-Verify
** **(US & PR only)
** HPE is an E-Verify employer.
E-Verify is an Internet-based system that compares information from an employee's Form I-9, Employment Eligibility Verification, to data from U.S.
Department of Homeland Security and Social Security Administration records to confirm the employment eligibility of all newly hired employees.
For more information .
You can also download the posters with information on legal rights and protection by clicking and .
**Accessibility
**Hewlett Packard Enterprise is committed to working with and providing reasonable accommodation to qualified, differently abled individuals.
If you need assistance in filling out the employment application or require a reasonable accommodation while seeking employment, please email
Note: This option is reserved for applicants needing assistance/reasonable accommodation related to a disability.
**Disclosure of Sensitive Personal Data
**Please ensure the resume you submit to us does not include any sensitive personal data.
Sensitive personal data includes data revealing information about your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sex life or sexual orientation. xcfaprz
To the extent the resume you submit does contain this type of personal data, you consent to the storing and processing of this data by HPE for the purpose of reviewing and managing your application.if applicable to the role you applied to, you must
#J-18808-Ljbffr
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre a été publiée par l’un de nos partenaires. Vous pouvez consulter l’offre originale ici.