SOC (Security Operation Center) - Purple Team -tier
hace 2 meses
**Why Kyndryl**
Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl?
We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers, and our communities. We invest heavily in you - not only through learning, training, and career development, but also through the flexible working practices and stellar benefits that help you grow and progress long-term. And we give back - from planting 90,000 trees in our first 3 months as part of our One Tree Planted initiative to the Corporate Social Responsibility and Environment, Social and Governance practices embedded within everything we do, we are committed to powering human progress in an ethical, sustainable way.
**Your Role and Responsibilities**
- Serve as Tier 3 level for complex technical and procedural escalations
- Provide technical lead support to tier 2 and 1 soc analysts
- Responsible for development and execution of incident response plans for escalated response processes
- Proactively identify indicators of compromise and generate and execute
- Incident Response Plan upon detection
- Provide Incident remediation and prevention documentation
- Identification and resolution of complex issues in customer environments.
- Develop resolution and implementation plans
- Work in collaboration with other security and company departments (operations, legal, sales) to help identify / resolve chronic issues and assist with the creation and implementation of corrective / preventative action plans
- Research, analyze and identify potential vulnerabilities and security deficiencies. Initiate escalation procedure to counteract potential threats/vulnerabilities
- Conduct security training, new hire training and network impact reviews. Coordinate repair and maintenance of security system with security integrators
- Liaise directly with third party vendors / suppliers
- Develop, document, and maintain Incident Response process, procedures, workflows, and playbook.
- Tune and maintain security tools (EDR, IDS, SIEM, etc) to reduce false positives and improve SOC detection capabilities
- Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports
- Create metrics and determine Key Performance Indicators to measure maturity of SOC operations.
- Develop security content such as scripts, signatures, and alerts
**Required Technical and Professional Expertise**
- Experience at least three (3) years working with SIEM(QRADAR, SPLUNK, SENTINEL, etc), FW, IPS/IDS
- Threat Intelligence solutions, knowledge of Elastic Stack (Elasticsearch, Kibana)
- Strong analytical skills to define risk, identify potential threats, document and develop action/mitigation plan
- Deep knowledge/experience with Operating Systems (e.g. Windows Server, CentOS Linux).
- Knowledge/experience of networking and firewalls
- Knowledge of Enterprise Anti-Virus, IDS, Full Packet Capture and Host/Network Threat Analysis
- Knowledge of Threat Monitoring Procedures
- Deep knowledge conducting and leading incident response situations
- Experience implementing monitoring tools and capabilities
- Solid hands-on experience with one or several of the following security tools:
- CrowdStrike O365 Security, AWS security and/or Hub Azure defender
- Security center Splunk Advance OSINT knowledge
- Experience with a wide range of security tools and knowledge of relevant cyber frameworks and methodologies
- Work in collaboration with other security and company departments to help identify / resolve chronic issues and assist with the creation and implementation of corrective / preventative action plans
- Research, analyze and identify potential vulnerabilities and security deficiencies. Initiate escalation procedure to counteract potential threats/vulnerabilities
- Conduct security training, new hire training and network impact reviews
- Coordinate repair and maintenance of security system with security integrators
- Liaise directly with third party vendors / suppliers
- Develop, document, and maintain Incident Response process, procedures, workflows, and playbook
- Tune and maintain security tools (EDR, IDS, SIEM, etc) to reduce false positives and improve SOC detection capabilities
- Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports
- Create metrics and determine Key Performance Indicators to measure maturity of SOC operations
- Develop security content such as scripts, signatures, and alerts
**Preferred Technical and Professional Experience**
- Three (3) years experience working within a security operations center
- Three (3) years experience working across multiple security disciplines (DFIR, log analysis, packet analysis, etc.) 1-2 years of le
-
Senior Lead, Security Specialist: SOC
hace 1 mes
Ciudad de México Kyndryl Mexico S. de R.L. de C.V. A tiempo completo**Why Kyndryl** Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our...
-
Security Operations Center Analyst
hace 7 días
Ciudad de México Encora A tiempo completoWe are looking for an experienced Security Operations Center (SOC) Analyst to join our growing security team. The SOC Analyst will be responsible for ensuring the security of all group brands and teams by proactively monitoring, detecting, and responding to security incidents and vulnerabilities. **Key Responsibilities**: - Monitor and analyze security...
-
SOC Tier 2
hace 1 mes
Ciudad de México Kyndryl Mexico S. de R.L. de C.V. A tiempo completo**Why Kyndryl** Kyndryl is a market leader that thinks and acts like a start-up. We design, build, manage, and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our...
-
Junior SOC Analyst
hace 1 mes
Ciudad de México Nearshore Cyber A tiempo completoJunior SOC Analyst **Location**: Mexico (Remote/Work-from-Home) We are seeking a highly motivated and skilled Junior SOC Analyst to join our dynamic cybersecurity team. As a Junior SOC Analyst, you will be responsible for monitoring and analyzing security events, incidents, and alerts, as well as assisting in the response and mitigation of security...
-
Senior SOC Analyst
hace 1 mes
Ciudad de México Nearshore Cyber A tiempo completo**Job Summary**: The Senior SOC Analyst will monitor the company's and its clients' computing environments and systems for signs of malicious activity. The role mainly involves investigating alerts, hunting for threats, responding to attacks, and developing cybersecurity intelligence. They will provide technical leadership to junior and mid-level analysts....
-
Global Security Incident Management Specialist Job Grade
hace 2 semanas
Ciudad de México Edenred A tiempo completoGlobal Security Incident Management Specialist Job Grade: page is loaded Global Security Incident Management Specialist Job Grade: Solicitar locations Mexico - Mexico City time type A tiempo completo posted on Publicado hace 2 días job requisition id JR012262 Dé un paso adelante y deje que Edenred le sorprenda. Cada día, ofrecemos soluciones...
-
Cyber Security Analyst SOC Monitoring
hace 12 horas
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business...
-
Cyber Security Analyst SOC Monitoring
hace 4 semanas
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business...
-
Global Security Incident Management Specialist Job Grade
hace 2 semanas
Ciudad de México Edenred Finland Oy A tiempo completoGlobal Security Incident Management Specialist Job Grade: page is loaded Global Security Incident Management Specialist Job Grade: Hae locations Mexico - Mexico City time type Kokopäiväinen posted on Julkaistu 2 päivää sitten job requisition id JR012262 Ota askel eteenpäin ja anna Edenredin yllättää sinut. Toimitamme joka päivä innovatiivisia...
-
Security Information
hace 1 mes
Ciudad de México Kyndryl Mexico S. de R.L. de C.V. A tiempo completo**Why Kyndryl** **Your Role and Responsibilities** Primary functions include governance, oversight, and leadership for operational security activities, change requests, tuning and SLA/Service Quality metrics. Security Specialists assist in finding the proper balance between enabling and securing in relation to the client's organization, culture and...
-
Security Operations Engineer
hace 1 mes
Ciudad de México Jobs for Humanity A tiempo completoCompany Description Jobs for Humanity is dedicated to building an inclusive and just employment ecosystem. Therefore, we have dedicated this job posting to individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Deaf of Hard of Hearing Black, Hispanic, Asian, Military Veterans, the Elderly, the LGBTQ,...
-
Junior Security Analyst
hace 1 mes
Ciudad de México Nearshore Cyber A tiempo completoJunior Security Analyst **Location**: Mexico (Remote/Work-from-Home) We are seeking a dedicated and motivated Junior Security Analyst to join our cybersecurity team. As a Junior Security Analyst, you will play a crucial role in supporting security operations, monitoring security events, and assisting in incident response activities. This is an excellent...
-
Cyber Security Analyst
hace 1 mes
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business...
-
Cyber Security Analyst
hace 12 horas
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business...
-
Cyber Security Analyst
hace 4 semanas
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business...
-
Sr. Cyber Security Engineer
hace 1 mes
Ciudad de México Nissan A tiempo completoWith a focus on Mobility, Operational Excellence, Value to our Customers and the Electrification of vehicles, you can expect to be part of something exciting. From the sleek design of our vehicles to the unique opportunities we offer around the globe, Nissan exemplifies ingenuity in everything we do. Our people are what drive the business forward. We’re...
-
Tier 3 Technical Support Engineer
hace 1 mes
Ciudad de México Transmit Security A tiempo completo**About the role**: We are looking for an experienced Technical Support Engineer to provide excellent customer service and to promote our values throughout the entire support team. Transmit Customer Support provides technical assistance by resolving complex technical issues by triaging, troubleshooting, performing root cause analysis, and restoring the...
-
Retail Operation Engineer
hace 2 semanas
Ciudad de México VISEO - Spain A tiempo completoVISEO works to simulate new ideas, offers, ways of collaborating, and methods for producing or selling. With 2500 team members working on four continents and a turnover of more than 265million dollars, VISEO offers an alternative for integrators, agencies, and consulting firms by providing a unique, flexible, innovative, and structured approach.Our Digital...
-
Security Monitoring Analyst
hace 1 mes
Ciudad de México ITKAWA A tiempo completo**Security Monitoring Analyst****: - Santander** **Location**: Hybrid - Querétaro **Conditions**: Perm positions, must be on site. **Salaries**: Open to Negotiate **MUST**: Previous Experience on finance, banking is a PLUS **Duration**:Possibility of extensions and/or full-time hire **Description**: Santander Bank NA is looking for a Monitoring Analyst...
-
Soc Engineer
hace 2 días
Ciudad de México, Ciudad de México BEIERSDORF A tiempo completoAt Beiersdorf, we want to help people feel good about their skin - and our commitment goes far beyond caring for skin. For 140 years, we have developed innovative skin and body care products for well-known brands such as NIVEA, Eucerin, La Prairie, Hansaplast, and Labello. We act according to our purpose, WE CARE BEYOND SKIN, and take responsibility for our...