Managed Security Services - Security Operations Center Event Analyst
Hewlett-Packard Enterprise Security Services Managed Security Services Americas Security Operations Centre (HP ESS MSS AMS SOC) provide high quality service support/change to HP ESS MSS AMS SOC Clients. This position is based in the Plano SMC AMS SOC located in Plano, Texas USA, working within our fast paced Security Operations Centre. Although this role is office based there is a requirement that the candidate be able to drive and have their own transportation. This is due to the location of the office and the shift hours coverage 24/7/365 that is required for HP ESS MSS AMS SOC business and client support. This opportunity and role involve working rotating shift hours in business hours and out of business hours. Shift Analyst work a 12 Hour shift, 4 days on, 4 days off, rotating and alternating between days and nights. Candidate needs to be able to obtain a security clearance if required by the client, but is not required to start in the position.
Key Job Responsibilities
- Working Security Events and Alerts based upon standard service measures
- Attending technical training to retain skill levels across the MSS Portfolio
- Provide technical support to clients across the Managed Security Service Portfolio
- Liaise with vendors and colleagues to support client devices and environments
- Respond to device alerts through applicable toolsets, services desks, and standard established procedures
- Support clients via telephone, toolset, technology, and electronic email
- Perform detail analysis of events during the incident process, combining sound analytical skills with advanced knowledge of IT Security and Network Threats.
- Provide subject matter expertise to colleagues and projects outside of AMS Security Operations Centre
- Participate in knowledge sharing with other Analysts and writing technical articles for Internal Knowledge Bases.
- Develop and maintain a strong relationship with the Client Security Teams.
- Perform other essential duties as assigned.
Education and Experience Required:
College Degree required or equivalent experience,
2 years experience in relevant technologies and customer environments. 2 years IT Experience of
customer delivery/customer service
1 Technical Industry Standard Certifications in Security and/or Network. Network and/or Security
Operations Centre Industry Experience Relevant industry qualification where applicable.
An active interest in Internet Security, incident detection, network and systems security. Willing
to undergo enhanced vetting to SC and DV level, as required.
Demonstrable experience in network, systems and security monitoring. Knowledge of incident process
and their design
Strong analytical skills
At least two years experience in a security monitoring role.
Knowledge and Skills Required:
2 Years IT experience
Excellent Documentation Skills Self-motivated
Working knowledge of Network and/or Security Technologies Experience in a Support Environment
Experience of working within a team environment Experience in Change Control Delivery
Experience with the following Intrusion Detection Prevention Systems: IBM ISS
McAfee Tipping Point
Experience with the following Laptop Desktop Encryption Systems McAfee
Symantec Pointsec Bitlocker
Working knowledge of different Firewall platforms, available with experience of
configuring/managing at least the following:
1 year in some sort of technical discipline (help desk, SOC, NOC, etc)
Knowledge of TCP/IP, UDP, and general networking principles
Knowledge of hacking techniques and tools
General knowledge of operating systems, daemons, etc
Familiarity with malware and detection
Ability to multi-task
General Knowledge of firewalls
High level knowledge of IOC’s and how they are used at the network level.
Working knowledge of Checkpoint products, F5 products, Bluecoat products, and Juniper products
Working knowledge of IDS/IPS, VPN Technologies, Authentication Software, Microsoft and Citrix
Excellent verbal and written communication skills in language to be supported Advanced and evidence
of trouble-shooting skills in a technical environment Excellent analytical and problem solving
Advanced Software and hardware knowledge of computing, storage and peripheral devices Advanced
proficiency with case management databases and tools
Superior customer service skills
Telephone and remote support experience. E-support experience, knowledge, and resolution ability
Ability to solve and document solutions for usage of other technicians and customers
Ability to mentor new engineers Ability to train peers on solutions Ability to lead technical
Lead or provide expertise to teams or projects.
Highly Developed knowledge of more complex solutions.
A motivated, self-managed, individual who can demonstrate above average analytical skills and work
professionally with peers and customers even under pressure.
A sound knowledge of IT security best practices, common attack types and detection / prevention
methods. Demonstrable experience of analyzing and interpreting system, security and application
logs in order to diagnose faults and spot abnormal behavior.
Experience of maintaining a secure network through configuring and managing typical Security
Enforcing Devices, such as
Firewalls, IDS/IPS devices and knowledge of the type of events they produce.
In depth experience of other common devices, such as routers and switches. Troubleshooting Windows
Strong written and verbal communication skills.
Exposure to IT service management best practices such as ITIL. Experience of using SIEM tools such
as ArcSight, LogLogic & Envison. Experience of mentoring or coaching members of a team.
An understanding of Information Security; relating to the Confidentiality, Integrity and
availability of information.
Meet Some of Hewlett Packard Enterprise's Employees
Business Compensation Manager
Jeremy ensures all HPE employees are properly compensated for their contributions to the company, helping to retain top talent and market leaders for the organization.
Back to top