SOC Analyst III

5 days ago

Apply Now

Receive Emails with Similar Jobs

World Kinect

WebsiteLinkedInAll Job Openings

Energy Management • Energy Consulting • Sustainability • Carbon Management • Price Risk Management

5001 - 10000

Description

• Participate in the design, implementation, and operationalisation of cybersecurity tools and initiatives in adherence to NIST Framework, PCI and other standards as defined by World Fuel Services InfoSec, certification and risk compliance policies and requirements. • Participate in the delivery of BAU cybersecurity operations to include: Alert Investigations, Incident Response, Vulnerability Management, Threat identification, Forensic investigations. • Identify and document information security risks and propose mitigating controls. • Investigate and respond to security incidents. • Monitor networks and systems for potential threats. • Monitor government, industry and vendor news and threat intelligence feeds to stay abreast emerging threats that may affect WFS. • Lead projects focused on the engineering and deployment of security tools or vulnerability remediation efforts. • Optimizes threat detection products for data loss prevention (DLP), security information and event management (SIEM), advanced email protection, endpoint detection and response (EDR), antivirus, cloud security products, intrusion detection systems, and other industry standard security technologies. • Write detection signatures, tune systems / tools, develop automation scripts and correlation rules. • Conduct forensic analysis on systems and engage third-party resources as required. • Other duties as assigned or directed.

Requirements

• 5 + years of experience in network and systems engineer with a focus on cybersecurity solutions • 4+ years of experience as a SOC or Forensic analyst or equivalent experience supporting cybersecurity incident response. • 1+ years of experience with cloud infrastructure, networking and security, preferably with AWS and Azure. Platform certification are a plus. • Experience with engineering and response automation utilising a variety of API’s, scripting languages or commercial orchestration tools. • Experience with deploying and maintaining security solutions including, but not limited to, SIEM, endpoint protection, vulnerability management and network/system level Intrusion Detection and Prevention. • Comfortable with network/pcap analysis, log analysis, TCP/IP concepts, various application, network and routing protocols and various operating systems. • Experience with creating and reviewing workflow processes and technical documentation. • Comfortable with mentoring other team members, providing guidance and direction during incident response and engineering efforts. • Familiarity with regulations and frameworks such as NIST, PCI, SOC, HIPAA, SSAE 16/SOC 1, SOC 2, ISO 17799/27002