SOC Engineering Analyst N2 – Senior

Job not on LinkedIn

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Valid

WebsiteLinkedInAll Job Openings

5001 - 10000 employees

Founded 1957

🔐 Security

📡 Telecommunications

🏛️ Government

Security • Telecommunications • Government

Valid is an integrator of secure identification and trusted connectivity solutions that helps governments, banks, and device makers secure digital identities, documents, payments, and connected devices. The company provides digital government and identity platforms, EMV payment cards and digital banking services, and SIM/eSIM and IoT connectivity solutions, while also manufacturing secure cards and SIMs and issuing secure documents. Valid positions itself as a provider of interoperable, secure digital services and hardware used by public-sector identity programs, financial institutions, mobile operators, and IoT device manufacturers.

📋 Description

• Conduct end-to-end technical investigations of security incidents. • Execute response actions (containment, eradication, and recovery). • Perform forensic analysis on endpoints and network events (intermediate/advanced level). • Develop and refine incident response playbooks. • Conduct proactive threat hunting based on hypotheses and threat intelligence. • Prepare technical and executive incident reports. • Collaborate with infrastructure, cloud, and identity teams. • Develop and execute threat hunting strategies based on TTPs. • Create and optimize use cases and detection rules. • Integrate and analyze threat intelligence feeds. • Support complex investigations and critical incidents. • Develop dashboards, advanced queries, and behavioral analyses. • Participate in Red/Purple Team exercises. • Support the technological evolution of the SOC.

🎯 Requirements

• Bachelor's degree (completed) • Experience with SIEM platforms such as Microsoft Sentinel, Splunk, or IBM QRadar. • SIEM (complex queries using KQL and/or SPL). • EDR/XDR (incident investigation and response). • Analysis of logs, endpoint telemetry, and network traffic (PCAP). • MITRE ATT&CK framework. • Experience with traffic analysis tools such as Wireshark and Zeek. • Experience with cloud environments (Azure, AWS, and/or GCP). • Intermediate knowledge of malware analysis. • Knowledge in automation and scripting using PowerShell and/or Python.

🏖️ Benefits

• Health insurance • Dental plan • iFood benefits • Wellhub • Commuter allowance (transportation voucher) • Childcare assistance • Profit-sharing (PLR) • Life insurance • Remote work model • Day off