Skip to main contentA logo with &quat;the muse&quat; in dark blue text.
Hewlett Packard Enterprise

Managed Security Services - Security Operations Center Event Analyst

Hewlett-Packard Enterprise Security Services Managed Security Services Americas Security Operations Centre (HP ESS MSS AMS SOC) provide high quality service support/change to HP ESS MSS AMS SOC Clients. This position is based in the Plano SMC AMS SOC located in Plano, Texas USA, working within our fast paced Security Operations Centre. Although this role is office based there is a requirement that the candidate be able to drive and have their own transportation. This is due to the location of the office and the shift hours coverage 24/7/365 that is required for HP ESS MSS AMS SOC business and client support. This opportunity and role involve working rotating shift hours in business hours and out of business hours. Shift Analyst work a 12 Hour shift, 4 days on, 4 days off, rotating and alternating between days and nights. Candidate needs to be able to obtain a security clearance if required by the client, but is not required to start in the position.

Want more jobs like this?

Get jobs delivered to your inbox every week.

By signing up, you agree to our Terms of Service & Privacy Policy.

Key Job Responsibilities

  • Working Security Events and Alerts based upon standard service measures
  • Attending technical training to retain skill levels across the MSS Portfolio
  • Provide technical support to clients across the Managed Security Service Portfolio
  • Liaise with vendors and colleagues to support client devices and environments
  • Respond to device alerts through applicable toolsets, services desks, and standard established procedures
  • Support clients via telephone, toolset, technology, and electronic email
  • Perform detail analysis of events during the incident process, combining sound analytical skills with advanced knowledge of IT Security and Network Threats.
  • Provide subject matter expertise to colleagues and projects outside of AMS Security Operations Centre
  • Participate in knowledge sharing with other Analysts and writing technical articles for Internal Knowledge Bases.
  • Develop and maintain a strong relationship with the Client Security Teams.
  • Perform other essential duties as assigned.

Education and Experience Required:

College Degree required or equivalent experience,

2 years experience in relevant technologies and customer environments. 2 years IT Experience of

customer delivery/customer service

1 Technical Industry Standard Certifications in Security and/or Network. Network and/or Security

Operations Centre Industry Experience Relevant industry qualification where applicable.

An active interest in Internet Security, incident detection, network and systems security. Willing

to undergo enhanced vetting to SC and DV level, as required.

Demonstrable experience in network, systems and security monitoring. Knowledge of incident process

and their design

Strong analytical skills

At least two years experience in a security monitoring role.

Knowledge and Skills Required:

2 Years IT experience

Excellent Documentation Skills Self-motivated

Working knowledge of Network and/or Security Technologies Experience in a Support Environment

Experience of working within a team environment Experience in Change Control Delivery

Experience with the following Intrusion Detection Prevention Systems: IBM ISS

McAfee Tipping Point

Experience with the following Laptop Desktop Encryption Systems McAfee

Symantec Pointsec Bitlocker

Working knowledge of different Firewall platforms, available with experience of

configuring/managing at least the following:

Checkpoint Juniper

CISCO PIX/ASA

1 year in some sort of technical discipline (help desk, SOC, NOC, etc)

Knowledge of TCP/IP, UDP, and general networking principles

Knowledge of hacking techniques and tools

General knowledge of operating systems, daemons, etc

Familiarity with malware and detection

Ability to multi-task

General Knowledge of firewalls

High level knowledge of IOC’s and how they are used at the network level.

Working knowledge of Checkpoint products, F5 products, Bluecoat products, and Juniper products

Working knowledge of IDS/IPS, VPN Technologies, Authentication Software, Microsoft and Citrix

environments

Excellent verbal and written communication skills in language to be supported Advanced and evidence

of trouble-shooting skills in a technical environment Excellent analytical and problem solving

skills

Advanced Software and hardware knowledge of computing, storage and peripheral devices Advanced

proficiency with case management databases and tools

Superior customer service skills

Telephone and remote support experience. E-support experience, knowledge, and resolution ability

Ability to solve and document solutions for usage of other technicians and customers

Ability to mentor new engineers Ability to train peers on solutions Ability to lead technical

action plans

Lead or provide expertise to teams or projects.

Highly Developed knowledge of more complex solutions.

Essential Skills

A motivated, self-managed, individual who can demonstrate above average analytical skills and work

professionally with peers and customers even under pressure.

A sound knowledge of IT security best practices, common attack types and detection / prevention

methods. Demonstrable experience of analyzing and interpreting system, security and application

logs in order to diagnose faults and spot abnormal behavior.

Experience of maintaining a secure network through configuring and managing typical Security

Enforcing Devices, such as

Firewalls, IDS/IPS devices and knowledge of the type of events they produce.

In depth experience of other common devices, such as routers and switches. Troubleshooting Windows

environments.

Strong written and verbal communication skills.

Desirable Skills

Exposure to IT service management best practices such as ITIL. Experience of using SIEM tools such

as ArcSight, LogLogic & Envison. Experience of mentoring or coaching members of a team.

An understanding of Information Security; relating to the Confidentiality, Integrity and

availability of information.

Job ID: 290634447dd865adf099731a6ecc3fd3
Employment Type: Other

This job is no longer available.

Search all jobs