IT Cyber-Security Engineer

hace 4 semanas


Cota, Colombia SLB A tiempo completo
CyberSOC Engineer | CyberSOC Engineer (T2 - Tier 2) is expected to:
Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc.Correlates network activity across networks to identify trends of unauthorized useResearch emerging threats and vulnerabilities to aid in the identification of incidentsAnalyze the results of the monitoring solutions, assess, and correlate the output using automated systems. Conduct triage, event correlation, classification, and analysis of these events such that incidents are investigated and logged or followed up using the existing information risk incident management processesProvide pro-active feedback which will enable improvement of the current monitoring rules, based on information and knowledge/experience from Schlumberger and Industry best practices.Capable of working unsupervised, but able to interact and give direction to business and IT (Information Technology) teams in line within established corporate security policies and processes.Develops and maintains constructive and cooperative working relationships with team membersDemonstrates the ability to drive creative, innovative ways to solve problems or minimize risk Consultative skills and ability to work cross-functionallyFocused and results orientedAbility to react quickly, decisively, and deliberately in high-stress, high-impact situationsStrong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

Overall Position Requirements

Bachelor's or master's degree in a technical field such as computer science, Cyber Security, Management Information Technology, Engineering, and Mathematics is strongly preferredInformation Security Experience: 3-5 years (IR or SOC (Security Operation Center) experience highly desired)Must be able to work flexible hours including early/late shift, weekends, and public holidayFluent in EnglishAbility to read and understand additional languages is a strong advantageEffective communication skillsMust possess excellent work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquetteAbility to work under stress and resilience to support extended work shifts infrequently (during Cyber Operations)Keen to follow a self-driven learning and development plan

Qualifications/Requirements

Certifications (1 or more of the following required)
SANS (SysAdmin, Audit, Network, and Security); GIAC (Global Information Assurance Certification); certification in Cyber Defense, Penetration Testing, Incident Response or ForensicsCertified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM) EC-Council certification: CEH (Certified Ethical Hacker), ECSA (Certified Security Analyst), CHFI (Computer Hacking Forensic Investigator), CND (Certified Network Defender)Cisco Certified Network Associate (CCNA)

Technical Skills

1. Incident Response - Security Risk

• Strong troubleshooting and root cause analysis skills

• Cyber outbreak management and the ability to differentiate malicious activity from directed attack patterns
2. Security Event Monitoring and Analysis

• Log analysis/ Windows event analysis

• Security Information and Event Management (SIEM) - Chronicle and Splunk are preferred
3. Could Security

• Cloud experience (e.g., Azure, GC (Google Cloud), AWS (Amazon Web Services), Alibaba Cloud, Yandex, G42)
4. Endpoint

• Antivirus solutions (e.g., Microsoft Defender)

• Strong Windows and Linux administration experience

• Information Security tools & packet analyses tools (e.g., Cb, Wireshark)
5. Network Security

• Firewall (e.g., Pato Alto Networks)

• Internet Protocols and Services (e.g., TCP/IP, FTP (File Transfer Protocol), HTTPS, SSH (Secure Shell))

• Intrusion Detection (e.g., IDS/IPS tools)

• Network scanning tools (e.g., NMAP)

• Networking infrastructure (Cisco is preferred)

• Information Security tools & packet analyses tools (e.g., Cb, Wireshark)
6. Identity & Access Management

• Azure Active Directory

• Cloud Access Security Broker (CASB)

• Federation

• Conditional Access

• Zero Trust
7. Forensics

• Malware analysis and memory analysis

• Network and Host forensics
8. Email security

• Phishing detection tools
9. Threat Intel

• Experience in analyzing threat intel feeds.
10. OT/IIoT Security

• Awareness of SCADA (Supervisory Control and Data Acquisition) / IIoT (Industrial Internet of Things) technologies
11. Data Security

• Data Loss Prevention tools, (e.g., AIP (Azure Information Protection), IRM (Information Rights management))
12. Compliance and Audit

• Fair understanding of the NIST (National Institute of Standards and Technology) CS (Cyber Security) Framework
13. Vulnerability Management

• Vulnerability Testing tools (e.g., Qualys, Kali)
14. Scripting/Automation

• Programming/Scripting tools (e.g., Python, Bash, PowerShell, YARA-L)
15. Application Security

• Fair understanding of the threat modeling
16. Project Management

• Basic project management experience
17. Common Technical Skills

• SharePoint and PowerBI experience are an advantage

• YARA-L, PowerShell or Python coding experience is an advantage

CyberSOC Engineer | CyberSOC Engineer (T2 - Tier 2) is expected to:

In-depth knowledge of at least 5-6 of the skills listed in the "Technical Skill" sectionTriage security events, Following existing incident playbooksContribute to the improvement and creation of playbooksLearn new skills across all technical domainsUse public cyber security resources (e.g., sites/blogs/podcasts) to stay updated with latest news & threatsMust be able to research, and communicate activities to detected security incidents in a timely mannerUse advanced analysis skills to isolate and diagnose potential threats and anomalous behavior

  • Cota, Colombia SLB A tiempo completo

    CyberSOC Engineer | CyberSOC Engineer (T2 – Tier 2) is expected to: Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc. Correlates network activity across networks to identify trends of...


  • Cota, Cundinamarca, Colombia SLB A tiempo completo

    CyberSOC Engineer | CyberSOC Engineer (T2 - Tier 2) is expected to:Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc.Correlates network activity across networks to identify trends of...

  • HR Student Intern

    hace 3 semanas


    Cota, Colombia SLB A tiempo completo

    The HR Student Intern is responsible for:Support in the administration of HR actions using the global and Standard Work Instructions (SWI) documentation.- Represents company professionally at all activities including communication with candidates and internal clients, etc.- Ensures the candidate is informed of the progress of the onboarding process util it...

  • HR Student Intern

    hace 4 semanas


    Cota, Colombia SLB A tiempo completo

    The HR Student Intern is responsible for: Support in the administration of HR actions using the global and Standard Work Instructions (SWI) documentation. - Represents company professionally at all activities including communication with candidates and internal clients, etc. - Ensures the candidate is informed of the progress of the onboarding process...

  • HR Student Intern

    hace 2 semanas


    Cota, Colombia SLB A tiempo completo

    The HR Student Intern is responsible for:Support in the administration of HR actions using the global and Standard Work Instructions (SWI) documentation. Represents company professionally at all activities including communication with candidates and internal clients, etc. Ensures the candidate is informed of the progress of the onboarding process util it is...

  • Data Analyst

    hace 1 mes


    Cota, Cundinamarca, Colombia Schlumberger A tiempo completo

    **Data Analyst - Customer Master Data** **About SLB** **About the Bogota Information Technology Center (BITC)** The Bogota Information Technology Center (BITC) has a fundamental and critical role in SLB corporate transformation and for delivering digital solutions to the larger organization. Our company has embarked on a corporate transformation to...