Senior SOC Security Analyst (United Arab Emirates) at DarkMatter LLC

Job description

We are prowling the Cyber Seas for our next great batch of SOC Analysts, Senior SOC Analysts, Principals Analyst. DarkMatter has been growing from strength to strength and we are in need of SOC Analysts from all levels

Whether you are working in our headquarters located in the iconic Aldar HQ building in Abu Dhabi, or one of our international offices you will be joining a firm that is constantly looking to push boundaries. We live and breathe the ethos that “impossible is just the beginning”.

We are the firm that conceptualised and unveiled the world’s most secure mobile phone and communications suite in under nine months so you wouldn’t expect a mundane working environment. We thrive on challenges and look to hire people with a genuine desire to contribute to our mission to “Protect the future by securing its technologies”. Boredom is not on the agenda.

In the last twelve months we have seen our ranks swell from 100 to over 500 working out of five offices across three continents. We have launched a full suite of cyber products and services including Governance, Risk & Compliance, Cyber Network Defence, Managed Security Services, Infrastructure & Systems Integration), as well as Secure Communications.

We are building an organisation of specialists to provide the ultimate integrated cyber security protection available. Whatever the scope, scale or sensitivity of our clients’ work, we'll assess their risks, resolve their vulnerabilities and always keep them ahead of the threat, offering them the best possible products and solutions.

About the Job

The SOC Analyst we looking needs to have demonstrated experience with security incident handling including: investigating issues to determine if there is a genuine security incident, escalating the security incident, and sending customers standardized emails specifying the steps needed to remediate the problems, you will also have handled escalations from Tier 1 Analysts and peer review and triage before further escalation. You will also demonstrate experience with change management including: processing change requests relating to security devices such as firewalls, intrusion detection systems and other security devices. Device and health monitoring including: troubleshooting network connectivity problems on managed security devices

About you

You will have come from a security background in Information Security. You will also have had at least 5 to 8 years’ exposure within a SOC environment. Your experience will range from various 3rd party applications. Your focus over the past few years would have been within building or managing a SIEM with a focus on applications such as ArcSight, RSA and Splunk. A basic understanding at best of Malware Analysis and/or Vulnerability Assessment. You would also will have understanding of the following OSI, Packet and Event Analysis, Host based security, Application and Network layer attacks, IDS/IPS, Application Firewalls and Diodes and other data segmentation technologies

Requirements

• 5 – 8 Years of relevant analysis experience in a SOC Operations is a must.
• Linux experience
• Understanding of IOC’s and Intel feed management and or usage.
• Experience building & managing Enterprise-class SEIM (ArcSight, RSA, Splunk) use cases & content
• Understanding of regex and other methods for logic determination
• Understanding of security kill chain
• Demonstrated ability to drive process improvements and identify gaps
• Incident Handling procedures
• Any of the following certifications CEH/GCIH/GCFA

Our process

• We aim to respond to all applicants within five working days, whether you are successful or not. If you make it through the initial selection process you will have a conversation with a member of the Talent Acquisition team to broadly discuss your experience, assess your compatibility with our values and culture, as well as try to answer your questions about DarkMatter.
• After this you will have a functional interview with someone from the team you would be working in to take a deeper dive into your skills.
• Assuming you come this far, we will then wheel out the big guns and you will have a final round of interviews with Line Manager/BU Head before we make a decision.
• With over 50 nationalities working in the firm we are literally hiring the best cyber talent in the world. Hence our interviews are frequently conducted by telephone or video-conference. As we take you through this application process your application will be partly managed by our automated recruitment system so please make sure you keep an eye out for updates. You can always track the status of your application through the candidate portal.
• If you have been inspired to apply for a role at DarkMatter click one of the buttons below, upload your resume and complete the application form. We will take it from there. We’ve tried to make it as easy as possible, however if you’re not quite ready to commit (or your resume isn’t up to date) then please feel free to reach out to one of our Talent Acquisition team on LinkedIn or call us on +971 2 417 1417 – we are always happy to have a chat about roles (and even put you in touch with one of the team members for an informal discussion about what it’s like to work for us or even just to talk about working in the United Arab Emirates).