Senior Cloud Information Security Analyst (SIEM/SOC)

Job Description

Cloud and Network Services is a leading Nokia business group that offers Network solutions on Core, Business and Enterprise segments, as well as Cloud solutions and Cognitive Services. It is a newly formed business group, that includes most of the former Nokia Software business, Nokia s enterprise solutions, core network solutions including both voice and packet core, and managed and advanced services from its former Global Services unit. This unit will also act as a delivery channel of certain products from other business groups to enterprise customers. Cloud and Network Services (CNS) will target growth by leveraging the industry transition to cloud-based delivery, network-as-a-service business models, and software-led value creation.About Nokia CNS SaaSWhile SaaS is on fire in the general marketplace, it s just beginning to emerge in the telecommunications sector. SaaS is important to us, not only because the market demands it, but because it produces a predictable and steady revenue stream. Our mandate is to drive Nokia s adoption of this lucrative business model, leading communications service providers (CSPs) to new opportunities and profit. SaaS will eventually encompass our industry and we need to be in front of this tectonic shift to capitalize on the first-mover advantage. We lead the Software-as-a-Service revolution in the Communications and Media industry through disciplined execution and high integrity, building on Nokia s heritage as the premier industry thought leader and trusted technology partner to Communications Service Providers and Enterprises.We create technology that helps the world act together by delivering innovative and contemporary Software-as-a-Service products, enabling Nokia customers to rapidly deliver new and profitable communications services to their respective markets. As Nokias growth engine, we create value for communication service providers and enterprise customers by leading the transition to cloud-native software and as-a-service delivery models. Our inclusive team of dreamers, doers and disruptors push the limits from impossible to possible.What you will learn and contribute toThe Nokia CNS SaaS team is hiring for the Security Incident and Event Management (SIEM) platform technical implementation and setup, designing the solution, administrating and demonstrating the capability operationally to help us defend cloud infrastructure and SaaS applications for services delivered through a centralized SaaS Delivery and Operations framework.Job Responsibilities & Competencies

• Engineer, implement, and administer the SIEM platform centered on Splunk (preferable) SIEM technology.

• Analyze, design, build, tune and support SIEM use cases across various business functions and security operational needs.
• Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents.
• Develop log ingestion, aggregation, and retention strategies to meet policy, related standards and operational requirements.
• Assist with on boarding new data sources into Splunk (preferable), analyze the data for anomalies and trends, and build dashboards highlighting the key trends of the data.

• Analyze and investigate security events from various sources.
• Triage and validate security alerts and escalate incidents, as required. Ensure that incidents are correctly reported and documented in accordance with operational policies and procedures.
• Troubleshoot system misconfigurations and recommend best practices for remediation.
• Provide high quality written and verbal status reports, briefings, recommendations, and findings as required.
• Maintain and support the operational integrity of SIEM/SOC toolsets.
• Develop SOC (Security Operation Center) roadmap by delivering SOC capabilities to the business and championing new ideas and initiatives to help improve new and existing capabilities.
• Ensure all relevant technical standards and policy documentation is reviewed and maintained thought out SOC technical capabilities.
• Maintain situational awareness of emerging cyber trends by reviewing open-source reports for recent vulnerabilities and other threats that have the potential to impact the services and incorporate this understanding into day-to-day security monitoring.
• Update SIEM/SOC documentation, processes and procedures and ensure currency, as required.
• Provide ideas and feedback to improve the overall SOC capabilities and maturity.

• Perform other job related duties as requested

Your skills and experienceYou have:

• Bachelors degree in Information Security, computer science, business, or a related field, or equivalent in experience and expertise.
• At least 5 years hands-on experience in SIEM tools implementing, operating and incident management in mission critical environments. Splunk experience would be a plus.
• Industry Certifications such as CISSP, CCSP, CCAK, CCSK, CISM, GCIA, GSEC (Cloud security certification preferred).

It would be nice if you also had:

• Proven experience with CASB and Cloud based logging and SIEM solutions.
• Understand threat analysis models like MITRE ATT&CK Framework.
• Knowledge and expertise in a myriad of Information Security Solutions across cloud and IT security.
• Experience with variety of operating systems, Cloud Data Platforms (AWS, Azure, GCP) and Cloud Computing (SaaS, PaaS, IaaS).
• Monitoring non-traditional IT services such as SaaS and cloud services.
• Experience leveraging a development language to automate workflows, analysis or integrations.
• Excellent analytical, interpersonal and communication skills both oral and written.
• Strong attention to detail.
• Self directed/self motivated.
• Result oriented with a hands-on mindset.
• Possessing Agile experience.
• Ability to convey and explain complex technical information to non-technical staff

What we offerNokia offers flexible and hybrid working schemes, continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.Nokia is committed to inclusion and is an equal opportunity employerNokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark
• LGBT+ equality & best place to work by HRC Foundation

,

Keyskills :
information securitysiemnetworkingmicrosoft accesscustomer relationsuse casesit servicescore networkcloud computingthreat analysisglobal services