CSOC Analyst | Schlumberger

Job Details

CSOC Analyst

Bogota, D.C., Capital District, Colombia - Colombia

CSOC Analyst


About SLB 


Together we create amazing technology that unlocks access to energy for the benefit of all. We are a global technology company, driving energy innovation for a balanced planet. With operations in 120 countries, we have more than 98,000 from 170 different nationalities, we lead the industry focused on diversity and inclusion. Visit www.slb.com for more information.  


About the Bogota Information Technology Center (BITC) 


The Bogota Information Technology Center (BITC) has a fundamental and critical role in SLB corporate transformation and for delivering digital solutions to the larger organization. Our company has embarked on a corporate transformation to deliver a step change in the reliability, efficiency and integration of our technologies, products and services. Advanced technologies are key enablers to this and encompass all aspects of business systems, including the organization platform and processes. Investments in and building strong competences across our technology pillars – SAP, Digital Enterprise Systems, Data and Analytics, Digital Operations, Security are key to an integrated digital that is positioned to deliver superior results.  


About this role 


Identify, analyze, communicate, defend, and contain information security incidents. 




  • Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc.
  • Correlates network activity across networks to identify trends of unauthorized use
  • Research emerging threats and vulnerabilities to aid in the identification of incidents 
  • Analyze the results of the monitoring solutions, assess, and correlate the output using automated systems. Conduct triage, event correlation, classification, and analysis of these events such that incidents are investigated and logged or followed up using the existing information risk incident management processes 
  • Provide pro-active feedback which will enable improvement of the current monitoring rules, based on information and knowledge/experience from Schlumberger and Industry best practices. 


Qualifications and Requirements 


Essential qualifications 

  • Bachelor’s or master's degree in a technical field such as computer science, Cyber Security, Management Information Technology, Engineering, and Mathematics is strongly preferred.
  • Information Security Experience: o For T1: 1-2 years (or appropriate internships in CS if fresh out of college) o For T2: 3-5 years (IR or SOC (Security Operation Center) experience highly desired) o For T3: 5-10 years 
  • Must be able to work flexible hours including early/late shift, weekends, and public holiday.
  • Fluent in English 
  • Ability to read and understand additional languages is a strong advantage. 


Certifications (1 or more of the following) Current (not future/or planned)


  • Certification are preferable
  • SANS (SysAdmin, Audit, Network, and Security) GIAC (Global Information Assurance Certification) certification in Cyber Defense, Penetration Testing, Incident Response or Forensics
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • EC-Council certification: CEH (Certified Ethical Hacker), ECSA (Certified Security Analyst), CHFI (Computer Hacking Forensic Investigator), CND (Certified Network Defender) 


Technical Skills


  • Data Security o Data Loss Prevention tools, (e.g., AIP (Azure Information Protection), IRM (Information Rights management)) 
  • Endpoint o Antivirus solutions (e.g., Microsoft Defender) o Strong Windows and Linux administration experience o Information Security tools & packet analyses tools (e.g., Cb, Wireshark)OT/IIoT Security o Awareness of SCADA (Supervisory Control and Data Acquisition) / IIoT (Industrial Internet of Things) technologies 
  • Network Security o Firewall (e.g., Pato Alto Networks) o Internet Protocols and Services (e.g., TCP/IP, FTP (File Transfer Protocol), HTTPS, SSH (Secure Shell)) o Intrusion Detection (e.g., IDS/IPS tools) o Network scanning tools (e.g., NMAP) o Networking infrastructure (Cisco is preferred) o Information Security tools & packet analyses tools (e.g., Cb, Wireshark) 
  • Security Event Monitoring and Analysis o Log analysis/ Windows event analysis o Security Information and Event Management (SIEM) – Chronicle and Splunk are preferred 
  • Compliance and Audit o Fair understanding of the NIST (National Institute of Standards and Technology) CS (Cyber Security) Framework • Vulnerability Management o Vulnerability Testing tools (e.g., Qualys, Kali) 


SLB as an employer 


As a leading employer in our industry, SLB is proud to offer a highly competitive package of base and incentive compensation as well as a comprehensive benefits program designed to support the health, wellness and financial security of our employees and their families. SLB is an equal employment opportunity employer. Qualified applicants are considered without regard to race, color, religion, sex, national origin, age, disability, status as a protected veteran or other characteristics protected by law.