CyberSOC Analyst | Schlumberger

Job Details

CyberSOC Analyst

Petaling Jaya - Malaysia

Job Summary:
Demonstrate at least 6 of the skills listed in the “Technical Skill” section
Daily review of SIEM to monitor activities within the company environments
Follow existing incident playbooks
Contribute to the improvement and creation of playbooks
Learn new skills across all technical domains
Use public cyber security resources (e.g. sites/blogs/podcasts) to stay up to date with latest news / threats
Show a commitment to progress towards L2
Essential Responsibilities & Duties:
Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc.
Correlates network activity across networks to identify trends of unauthorized use
Researches emerging threats and vulnerabilities to aid in the identification of incidents
Analyze the results of the monitoring solutions, asses and correlate the output using automated systems. Conduct triage, event correlation, classification and analysis of these events such that incidents are investigated and logged or followed-up using the existing information risk incident management processes
Provide pro-active feedback which will enable improvement of the current monitoring rules, based on information and knowledge/experience from Schlumberger and Industry best practices.
Capable of working unsupervised, but able to interact and give direction to business and IT teams in line within established corporate security policies and processes.
Develops and maintains constructive and cooperative working relationships team members
Demonstrates the ability to drive for creative, innovative ways to solve problem or minimize risk
Consultative skills and ability to work cross-functionally
Focused and results oriented
Ability to react quickly, decisively and deliberately in high-stress, high-impact situations
Strong decision-making capabilities, with a proven ability to weight the relative costs and benefits of potential actions and identify the most appropriate one
Technical Skills
Information Security tools & packet analyses tools (e.g. CB, Wireshark)
Intrusion Detection (e.g. IDS/IPS tools)
Firewall (e.g. Pato Alto Networks)
Security Information and Event Management (SIEM) – Splunk is preferred 
Strong Windows and Linux administration experience
Programming/Scripting tools (e.g. Python, Bash)
Internet Protocols and Services (e.g. TCP/IP, FTP, HTTPS, SSH)
Networking infrastructure (Cisco is preferred)
Vulnerability Testing tools (e.g. Nessus, Kali)
Network scanning tools (e.g. NMAP)
Awareness of SCADA / IIoT technologies
Log analysis/ Windows event analysis
Network and Host forensics
Malware analysis and memory analysis
Antivirus solutions, virus outbreak management and the ability to differentiate virus activity from directed attack patterns
SharePoint and PowerBI experience is an advantage
Strong troubleshooting and root cause analyses skills
Current (not future/or planned) Certification are preferable
• SANS (SysAdmin, Audit, Network, and Security) GIAC (Global Information Assurance Certification) certification in Cyber Defense, Penetration Testing, Incident Response or Forensics
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• EC-Council certification: CEH (Certified Ethical Hacker), ECSA (Certified Security Analyst), CHFI (Computer Hacking Forensic Investigator), CND (Certified Network Defender)
• Cisco Certified Network Associate (CCNA)
Bachelor’s or Master’s degree in a technical field such a Computer science, Cyber Security, Management Information Technology, Engineering, and Mathematics is strongly preferred
Information Security Experience:
Must be able to work flexible hours including early/late shift, weekends, and public holiday
Fluent in English and good communication skills
Ability to read and understand additional languages is a strong advantage
Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette
Keen to continue self-development
Schlumberger is an equal employment opportunity employer. Qualified applicants are considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or other characteristics protected by law. 

CyberSOC Analyst
Log in to apply for this position today.
Apply Now

Share This