Vehicle SOC Student Analyst

Description

Upstream is looking for a Vehicle SOC (vSOC) Student Analyst to join the Upstream vSOC analysts team and focus on addressing potential vehicle and API security incidents, and creating and implementing, together with customers, strategies for containment and recovery.

As a Vehicle SOC Student Analyst, you will use threat intelligence, previous similar attack vectors, and insights from internal research teams to pinpoint affected assets, the type of attack, and the extent of the attack.

The Vehicle SOC Student Analyst will assist in creating and maintaining playbooks and ensuring the correct training is in place so that team members can implement procedures and policies effectively.

Additionally, Vehicle SOC Student Analyst will act as a security point of contact for managed services for customers and assist in troubleshooting real-time potential security alerts.

This role is part-time and based in Herzliya, Israel.

Responsibilities

• Primarily responsible for security event monitoring, management, and response
• Triage incoming alerts (initial assessing the priority of the event, initial determination of incident to determine risk and damage or appropriate routing of security risks)
• Provide administrative support for daily operational activities
• Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring
• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives
• Revise and develop processes and playbooks to strengthen the current Security Operations Framework
• Identify threat vectors and develop use cases for security monitoring
• Fine tune detection logic and machine learning profiles
• Document all activities during an incident and provide leadership with status updates during the life cycle of the incident.
• Support Root cause analysis (RCAs) process for events escalated to incident levels

Requirements

• BSc.Student in Computer Science / Software Engineering / Information Systems Engineering or any other relevant degree - a must
• At least two years until graduation
• Position requires availability for on-call shifts as part of a rotating schedule
• Availability for at least three working days a week - from office.
• Familiar with Incident Management and Response
• Familiar with creation of playbooks
• Familiar with security device management and SIEM (Splunk, Qradar, etc.)
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Familiarity with malware techniques and attack techniques (e.g. code injection, DGA, hooks, etc.)
• Familiarity with APIs, OWASP API TOP 10 
• Familiarity with big data platforms and data analysis (e.g. SQL, python)
• Strong troubleshooting and problem-solving skills
• Knowledge of applications, databases, middleware to address security threats
• Experience in preparation of reports, dashboards, and documentation
• Excellent communication skills
• Ability to handle high pressure situations with key stakeholders
• Excellent interpersonal skills, positive attitude and outstanding customer approach
• Ability to take initiative and adapt
• Have excellent written and verbal communication skills
• Possess the ability to adjust and adapt to changing priorities in a dynamic environment
• Be able to multitask and be proactive in addressing issues and requests
• Possess technical acumen and the ability to understand and interpret technical specifications

Upstream is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.