Satti Group of Companies, 2nd floor, West Khyber Plaza, Fazal ul Haq Road, Blue Area, Islamabad, Pakistan
Job Description
Qualification:
Minimum Bachelors in Computer Science/Information Technology/ Information Security from an
HEC Accredited University of Pakistan
Certifications
Mandatory:
Certification in IBM QRadar Administration / Analyst
GCIH or equivalent certification related to incident handling
Preferable:
HCNP/CCNP or above
Industry Certifications in Information Security domain (e.g. CEH, CHFI)
Required Experience:
Minimum 2 Years of experience working in Enterprise Level SOC.
Experience in IBM QRadar Administration and Integration with Complex Systems
Experience in integration of IBM Resilient IRP with IBM QRadar. Experience in development
and optimization of Incident Response Playbooks
Experience in optimization of SIEM Rules
Experience in development and establishment of SOC Processes and Procedures
Experience in in-depth analysis of indicators of compromise trawling through aggregated log
data to identify malicious activity
Experience in examining full packet captures, net flow logs and all other associated artifacts
fully concluding the route origin of any malicious activity
Experience in creating effective Advanced SIEM rules to detect malicious activity
Experience in IT infrastructure (e.g. Operating Systems, Servers, VMware, Active Directory,
VDIs, etc)
Atleast 3 years of Experience in Network operations i.e. Management of WAN, LAN, Wireless,
VoIP, AAA / Cisco ISE, Service support desk / ticketing platform etc.
Desirable Experience:
Working Knowledge of Large-Scale Networks including architecture, administration and
security risks
Experience of drafting policies and procedures as per ISO 27001 std.
Experience in misc cyber security tasks i.e. pentest, network forensics, vulnerability
assessment using Nessus tool etc.
Experience in conducting trainings on various cyber security subjects i.e. ethical hacking, risk
assessments etc.