What are the responsibilities and job description for the L3 IoT SOC Analyst position at CHEP CZ s.r.o.?
CHEP helps move more goods to more people, in more places than any other organization on earth via our 300 million pallets, crates and containers. We employ 11,000 people and operate in more than 55 countries. Through our pioneering and sustainable share-and-reuse business model, the world’s biggest brands trust us to help them transport their goods more efficiently, safely and with less environmental impact. What does that mean for you? You’ll join an international organization big enough to take you anywhere, and small enough to get you there sooner. You’ll help change how goods get to market and contribute to global sustainability. You’ll be empowered to bring your authentic self to work and be surrounded by diverse and driven professionals. And you can maximize your work-life balance and flexibility through our Hybrid Work Model. Job Description Line of Business : Brambles Function/Department : Global IT Security Operations Position Title* & Location : IT/OT Security Analyst, Prague Position Purpose : This position reports to the Director, IT Security Operations and is responsible for ensuring that the tactical security measures for the company's infrastructure meet the highest security standards. This will be achieved through 2 main factors: The appropriate design, delivery and running of OT (Operational Technology) environments, including IoT. Work with outside vendors, the Security Operations Centre, and the wider Infrastructure Teams and Service Desk to respond to security escalations. This role is key in supporting Brambles IT Security threat analysis and incident response program, and is responsible for ensuring that security events are analyzed and appropriate response measures are taken. Major/Key Accountabilities : Provide support and challenge to a direct peer in OT, with the shared responsibility of improving OT and IoT Security posture and capabilities. Provide a first point of contact for L3 security escalations from the SOC team, ensuring a thorough review, escalation and management capability is maintained. Participate in Security Incident Response Team (SIRT) in the identification, containment, eradication, and resolution of security issues. Facilitate requests from business contacts in local timezones to provide a global support framework. Maintain detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the identification and resolution of vulnerabilities and threat vectors. Provide recommendations for additional security solutions or enhancements to existing controls, to improve overall enterprise security and “defense in depth” strategy. Participate in the deployment, integration and initial configuration of all new security solutions as well as enhancements to existing security solutions in accordance with standards and best practices. Maintain operational configurations of all IT security solutions as per any established baselines. Monitor all security solutions for efficient and appropriate operations. Generating trouble tickets and performing initial validation and triage to determine whether incidents are security events using open source intelligence (OSINT) Review logs and reports of all devices, whether they are under direct control (i.e., security tools) or indirect control (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution. Hunt for advanced threats, pivoting on and analysing data to identify malicious behaviors. Perform real-time incident handling, independently following and creating procedures to analyse and contain malicious activity. Collect evidence to include digital media, logs, and malware to perform analysis associated with cyber intrusions. Maintain an understanding of attack methodologies and use information operationally. Make recommendations and create or modify processes and procedures based on knowledge of advanced threat behaviours. Identify and analyse threats, using OSINT, Threat Intelligence and leveraging enrichment resources. Develops and enhances content and methods for monitoring and incident response, leveraging data extraction techniques for further analysis. Develops and enhances processes, work flows, and documentation. Determine high fidelity behavioural patterns and create content in multiple tools. Qualifications : Bachelor’s degree in Computer Science, Information Systems, Business or related field, Masters preferred or equivalent combination of education/experience. One or more certifications in: CISSP, CISA, CISM, CHFI, GISP, GCFA, GCED, GCIA or similar industry standard certifications. Experience : Experience – 4 – 6 years in IT related roles; Security and Technical Services experience required. Strong understanding of OT and IoT security technologies, risks, issues and threat vectors. Experience of active OT and IoT Security defence techniques and tooling desirable. Familiarity with system monitoring, assessment and reporting tools (e.g. SIEM, VM tooling etc) Proficiency in network security and monitoring tools. Lead threat-hunt and remediation efforts with OT and IoT technologies and implement attack-surface reduction techniques Firewall management (Cisco, Palo Alto etc) Ability to work in independent environments under aggressive timelines Ability to develop and maintain working relationships in a global environment Excellent analytical and problem-solving skills Outstanding written skills for preparing reports and briefings Escalates potential risk and internal control weaknesses to management Experience with Vulnerability and Malware Analysis (threat and attack analysis) Experience with security tools (IDS, firewalls, anti-virus, data loss prevention, etc.) Experience working with security governance frameworks (NIST, ISO27001, COBIT) Knowledge of Cloud Security Operations (SaaS, PaaS, IaaS), Mobile Architecture, Network and Application Security and/or Data Protection Skills and Knowledge Should possess a proficient understanding of e-mail filtering, URL filtering, anti-virus, IDS, vulnerability scanning, 2-factor authentication, access control systems, SIEM and VMware products. Experience with common information technologies (Windows, VMware, and Cisco as well as some UNIX, Linux) Ability to demonstrate successful implementation techniques based on industry established best practices. Outstanding verbal and written communications skills with all levels of management, staff, and vendors. Demonstrates accuracy and thoroughness. Looks for ways to improve and promote quality and monitors own work to ensure quality is met. Must be able to work independently, prioritize work activities and use time efficiently. Must be able to maintain confidentiality. Must be able to demonstrate and promote a positive team environment. Must be able to work well under pressure or stressful conditions and meet required incident response milestones. Must possess the ability to manage conflict and/or direct change, delays, or unexpected events appropriately. Must be available to work outside of normal working hours or on-call as needed. Preferred Education Bachelors Preferred Level of Work Experience 3 - 5 years We are an Equal Opportunity Employer and we are committed to developing a diverse workforce in which everyone is treated fairly, with respect, and has the opportunity to contribute to business success while realizing his or her potential. This means harnessing the unique skills and experience that each individual brings and we do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state, or local protected class. Individuals fraudulently misrepresenting themselves as Brambles or CHEP representatives have scheduled interviews and offered fraudulent employment opportunities with the intent to commit identity theft or solicit money. Brambles and CHEP never conduct interviews via online chat or request money as a term of employment. If you have a question as to the legitimacy of an interview or job offer, please contact us at recruitment@brambles.com. CHEP helps move more goods to more people, in more places than any other organization on earth via our 300 million pallets, crates and containers. We employ 11,000 people and operate in more than 55 countries. Through our pioneering and sustainable share-and-reuse business model, the world’s biggest brands trust us to help them transport their goods more efficiently, safely and with less environmental impact. What does that mean for you? You’ll join an international organization big enough to take you anywhere, and small enough to get you there sooner. You’ll help change how goods get to market and contribute to global sustainability. You’ll be empowered to bring your authentic self to work and be surrounded by diverse and driven professionals. And you can maximize your work-life balance and flexibility through our Hybrid Work Model, for available positions.
SOC L3 Analyst
iMettle Consulting LLC -
Iselin, NJ
SOC L3 Analyst
VLink Inc -
Iselin, NJ
SOC L3 Analyst
Sibitalent Corp -
Iselin, NJ