Security Operation Analyst L3

The SOC Analyst Level 3 is responsible for overseeing the detection, analysis, and response to the most advanced and severe cybersecurity threats facing an organization. L3 analysts lead major security incidents and drive the incident response process from detection through recovery, ensuring the organization's infrastructure and data remain secure. This role requires expertise in advanced threat analysis, incident management, forensics, and threat hunting, as well as the ability to work cross-functionally with senior technical and business leaders. 

Requirements: 
1. A minimum of 4 years’ experience in security focusing on SIEM or log aggregation and correlation, with minimum 6 years overall enterprise IT experience. Familiar with Security platform (network, endpoint, access, and cloud)

2. Having relevant degree: Bachelor's or Master's Degree in Computer Science, Information Security, Electrical Engineering, Informatics Engineering Information Technology, Cyber Security Information Systems.

3.Mandatory: SIEM tool certification (such as: Splunk, Qradar, Mcafee, etc), Splunk Certified Power User more preferred. Plus poin: ECIH/CHFI

Job Description:

1. Review/create/optimize health check/completeness of data of SIEM from various data source (including ensure completenss data compared to IT assets)

2. Review/create/optimize cyber security use case on SIEM

3. Review/create/optimize cyber security dashboard on SIEM

4. Threat intelligence and OSINT optimization and integration especially for SIEM enrichment 

5. Propose automation on mature use cases and having automation capability is plus criteria