SOC / NOC Analyst (Internship)
LifeTech Group
- Petaling Jaya, Selangor
- Training
- Full-time
- Perform proactive monitoring for security log events in 24x7 mode. (Splunk, SIEM, TrendMicro (EDR/IPS/etc) and others 3rd Party software)
- Escalate validated and confirmed incidents to designated incident response team.
- Notify Client of incident and required mitigation works.
- Fine-tune SIEM rules to reduce false positive and remove false negatives / analysis and response to previously unknown hardware and software vulnerabilities.
- Collect global threat intelligence and internal threats then inject actions based on analysis and recommendation.
- Provide advisories and threat intelligence based on new trends, threats, emerging campaigns, malicious attacks, hacker group.
- Proactively research and monitor security information to identify potential threats that may impact the organisation.
- Develop and distribute information and alerts on required corrective actions to the organisation.
- Assist the Level 1 or Level 2 with monthly and ad-hoc reporting - responsible for completing statistical and status reports, as well as providing fast and timely responses.
- Support technical teams in 24 x 7 environment operational environments with high uptime requirements.
- Proactively monitor and troubleshoot :
- systems problems
- network outages
- software issues * Respond to alarms and alerts from network tools
- Responds to incidents submitted by customers and internal staff via phone call / email / WhatsApp
- Creates and reports tickets for events and incidents
- Provide timely response to all incidents, outages and performance alerts - ISP
- Notify customer and third-party service providers of issues, outages and remediation status
- Recognize, identify and prioritize incidents in accordance with customer business requirements, organizational policies and operational impact
- Determines and categorize the severity of an incident and depending on the circumstances take immediate action to restore service or escalate as appropriate
- Perform basic systems testing and operational tasks - 1st & 1.5 level
- Conducts specific procedures to proactively check the health and welfare of the applications / network equipment
- Gathers the incident history and preserve it for later use
- Perform and generate analysis report based on customer / ISP requests
- Generate monthly report for Operational Review Meeting with customers
- Support technical teams in 24 x 7 environment operational environments with high uptime requirements.
- Work with internal and external technical and service teams to create and/or update knowledge base articles