Analyst Security Operations Centre
Analyst Security Operations Centre
cybersecurity Security Operations and Testing
QP Code
SSC/Q0909
NSQF Level
5
Brief Job Description
Individuals at this job are responsible for monitoring and analyzing organizational traffic and logs for threats and for enhancements to existing security measures.
Personal Attributes
This job may require the individual to work in a team/shifts. The individual should be result oriented and have a high attention for detail. The individual should also be able to demonstrate good communication skills and logical thinking with willingness to work in shifts.
Role Map
Technology
Cybersecurity
Job Category
Security Operations and Testing
Job Track
Security Operations
Roles
Analyst Security Operations Centre
NSQF Level: 7
Technical Competencies
Key job task/function that an individual has to perform as a part of the job. These are also known as National Occupational Standards (NOS).
6
6 Compulsory
Monitor and log events and alarms of possible security threats
This unit is about monitoring organizations traffic and logs for threats in application consoles and raising incidents based on the 1st level analysis and following up to ensure response within agreed timelines.
Investigate and respond to events and alarms that could be security threats
This unit is about responding to alarms, using information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network and provide recommendations in order to protect information, information systems, and networks from threats.
Manage your work to meet requirements
This unit is about planning and organizing your work in order to complete it to the required standards on time.
Work effectively with colleagues
This unit is about working effectively with colleagues, either in your own work group or in other work groups within your organization.
Provide information in standard formats
This unit is about providing specified data/information related to your work in templates or other standard formats.
Maintain an inclusive, environmentally sustainable workplace
The unit is about implementing and improving diversity equality and inclusion in a sustainable and environment friendly workplace
Supplementary Topics
Advanced topics that will help you excel in this role
Security Process Automation
User Behavior Analytics
Cloud Access Security Broker (CASB)
DevSecOps
Security Orchestration Automation and Response (SOAR)
Popular Tools Used by Analyst Security Operations Centre
SIEM tools
Apache Metron
Alien Vault
Snort
Vulnerability Assessment
Burp Suite
Nikto
Paros Proxy
Nmap
Nessus Professional
Nexpose
Intrusion Detection
Snort
OSSEC
OpenWIPS-NG
Samhain
Threat Intelligence
LogRhythm
Crowdstrike
Log Analysis tools
Nagios
ELK Stack
Graylog
Traffic Analysis tools
Wireshark
Nagios Core
NetXMS
OpenNMS, Simple Event Correlator
OpenNMS
Simple Event Correlator
Malware Analysis tools
OllyDbg
Volatility
Programming languages
Python
Java
Ruby
Perl
PHP
C++