L3 SOC Analyst - Rome
Tasks
- Act as Level 3 escalation point for security investigations
- Analyze malicious activity suspicious files attacker behavior and adversary TTPs
- Analyze security events alerts logs endpoint telemetry and network traffic
- Conduct threat hunting and proactive analysis
- Develop and refine detection use cases correlation rules and alerting logic
- Document investigation findings and remediation recommendations
- Lead advanced incident investigations scoping containment eradication remediation
- Monitor trusted sources for emerging threats vulnerabilities and adversary activity
- Review and improve SIEM EDR NIDS SOAR and security tool configurations
- Support Level 2 analysts during complex investigations
- Support customers with security monitoring tuning and optimization
Perks/Benefits
Skills/Tech-stack
Amazon Web Services | Capture analysis | Cloud platform | CrowdStrike | DLP | DNS | Detection engineering | Detection tuning | EDR | Endpoint telemetry | False Positive | False positive reduction | Firewall | Google Cloud | Google Cloud Platform | Incident Response | KQL | Malware analysis | Microsoft Azure | Microsoft Defender | Microsoft Sentinel | Mitre Attack | NIDS | Network Traffic | Network Traffic Analysis | Packet Capture | Packet capture analysis | Palo Alto | Proxy | QRadar | SIEM | SOAR | SentinelOne | Sigma | Snort | Splunk | Splunk SPL | Suricata | TCPIP | Threat Intelligence | Threat hunting | Traffic analysis | VPN | Web Services | Zeek
Education
N/A
Roles
Related jobs
-
Bash | DNS | Detection and Response | DevSecOps | Development LifecycleMid-level Full TimeLa Spezia, Italy1d ago
-
Bash | DNS | Detection engineering | DevSecOps | EDRContinuous learning | SOC team collaboration | Security clearance supportMid-level Full TimeLa Spezia, Italy1d ago
-
Automated Alerts | CI/CD | DNS | Dashboards | Detection rulesMid-level Full TimeLa Spezia, Italy1d ago
-
Cybersecurity Performance & Reporting Expert EUR 40K-50KCompliance | Cybersecurity | Dashboarding | Data Quality | Data VisualizationSenior-level Full TimeNapoli, IT3d ago
-
Cybersecurity Technical Analyst Expert EUR 42K-50KAPI Security | Access Management | Anti-DDoS | Antimalware | Application FirewallEqual opportunity | Inclusive work environment | International team experienceSenior-level Full TimeMilano - Torino, IT3d ago
-
Cybersecurity Technical Analyst Senior EUR 42K-50KAPI Security | Access Management | Anti-DDoS | Antimalware | Application FirewallSenior-level Full TimeMilano - Torino, IT3d ago
-
Incident Response Expert EUR 50K-55KAntivirus | Application Architecture | Business Continuity | C# | C++Inclusive culture | International work environment | Mission-critical environmentSenior-level Full TimeNapoli, IT3d ago
-
Incident Response Senior EUR 45K-50KAntivirus | Business Continuity | C++ | CISA | Cyber Kill ChainSenior-level Full TimeNapoli, IT3d ago
-
Information Security Analyst EUR 43K-69KAWS | CNAPP | CSPM | Cloud Security | Cloud security monitoringMid-level Full TimeMilano, Italy7d ago
-
Mid-level TemporaryBOLOGNA, EMILIA ROMAGNA, Italy9d ago
-
Telespazio - Cyber Security Analyst EUR 22K-28KAES | Access Control | Authentication | Business Continuity | Business Impact AnalysisFlexible working hours | Health insurance | Hybrid working | International experience opportunities | Meal vouchersMid-level Full TimeIT - Fucino, Italy10d ago
-
Junior Cyber Security Analyst EUR 31K-43KAntivirus | Application Security | DLP | Endpoint Security | FirewallEntry-level Full TimePisa11d ago
-
Junior Cyber Security Strategy EUR 22K-45KCOBIT | Cyber Security | Data Visualization | Data analytics | GDPREntry-level Full TimeNapoli, IT17d ago
-
SOC Analyst L2 EUR 29K-39KCybersecurity compliance | Digital forensics | Firewall | IDSIPS | Incident ResponseCareer growthMid-level Full TimeRoma (P.le Agricoltura), Italy24d ago
-
APT detection | Advanced Analytics | DNS | Data Enrichment | Data correlationSenior-level Full TimeNapoli, IT24d ago
-
Senior Security Defence Center Analyst EUR 50K-50KAPI | Forensic analysis | Incident Response | Malware analysis | NDRSenior-level Full TimeNapoli, IT24d ago
-
Junior Security Defence Center Analyst EUR 19K-50KAPI | Digital forensics | Incident Response | NDR | NetworkingInclusive work environmentEntry-level Full TimeNapoli, IT24d ago
-
Expert Security Defence Center Analyst EUR 50K-50KAPI | Cybersecurity | Digital forensics | Incident Response | Malware analysisSenior-level Full TimeNapoli, IT24d ago
-
Operatore Tecnico L1 – Cybersecurity & MSS EUR 25K-30KAntivirus | Firewall | Incident Management | Linux | Managed Security ServicesEntry-level Full TimeRoma (P.le Agricoltura), Italy25d ago
-
SOC Analyst Senior EUR 38K-50KDDoS | DNS | HTTP | Incident Response | LinuxCollaborative team | Continuous training | Professional growthSenior-level Full TimePozzuoli, Italy1mo ago
-
Junior Cyber Security & Network Support EUR 26K-30KActive Directory | Certificate Lifecycle Management | Certificate lifecycle | Defender for Endpoint | Defender for IdentityFull-time | Hybrid work mode | Indefinite contractEntry-level Full TimeFlorence, Tuscany, Italy1mo ago
-
Corporate Security Analyst EUR 30K-35KACL | Access Control | Access Control List | Active Directory | Defender for EndpointCompany agreements | Health insurance | Pension plan | Smart working | Ticket restaurantEntry-level Full TimeItalia1mo ago
-
Cyber Risk Posture & Strategic Intelligence EUR 21K-25KDark Web | Dark web monitoring | Data Visualization | EDR | FAIREqual opportunity environment | Inclusive culture | International work environmentMid-level Full TimeNapoli, IT1mo ago
-
AWS | Access Control | Application Firewall | Authentication | AuthorizationComplex technology environment | Cyber security project involvement | Hybrid work model | Indefinite contractEntry-level Full TimeFiumicino, Metropolitan City of Rome Capital, …1mo ago
-
Cybersecurity | English | Incident Response | Security monitoring | Threat AnalysisDiversity and inclusion | Hybrid workingEntry-level Full TimeMilano, Roma1mo ago