Security Operations Engineer
Orange
- Cairo
- Permanent
- Full-time
- Support and Operate Security Services and offers provided to a vast number of Customers worldwide to secure high quality levels and almost 100% service availability.
- Act as Second level of support and deliver different security services management aspects: incident, change, release, capacity, and vulnerability management.
- Resolve service incidents by troubleshooting & solving reported faults.
- Perform service changes by assessing risk and implementing reported change requests.
- Resolve service problems by performing root cause analysis and designing action plans for unknown errors reported through: Problem Management Dashboard, Monitoring Alarms, Proactive Trouble Tickets, Incidents, or authorized signed emails.
- Monitor & validate alarms coming from intrusion sensors and identify real and false alarms.
- Qualify and solve incidents by analysing application-level traffic, tracking and investigating intrusions through manual event correlation.
- Escalate technically major security events & incidents to security senior engineers to empower it with better technical skills and more investigation.
- Perform routine actions to help manage and optimize IPS security policies.
- Perform solution releases by authorizing & validating changes, upgrades, updates, patches and migrations as well as implementing it.
- Maintain Security Solutions Configuration Management up-to-date by adding/modifying CI as implied by incident, change, & release processes.
- Manage customers (internal and external) calls and provide them with regular as per each of the service support processes.
- Perform SIPs actions led by Senior Security Engineers and update the action plan of the SIP.
- Perform Technical & management escalation as implied by the escalation process to ensure security tasks are progressing toward resolution and/or completion.
- Mentor newcomers and security associate as well as SOC 1 and provide them with guidance and technical advice.
- B.Sc. degree in Computer Science, communications or electronics engineering
- Certification at any of the following domains:
- CCSE or CCSA, SSCP, NSE4, JNCIS-FW, NSE5 or NSE4 and PCNSE along with CCNP or CCSP Security.
- Or at least CCNA security certified.
- CISSP is a plus
- At least 3 years of professional experience
- At least 2 years of IT/Network security technical experience
- Very good understanding of network security technologies:
- Firewalls: CheckPoint & Fortinet and Palo Alto mainly other technologies are also acceptable
- Load Balancers: F5 BIGIP mainly
- Intrusion Detection & Prevention and EDR/XDR.
- Remote Access Solutions: Pulse Secure MSSL, IPsec, VPN, AAA, PKI, … etc.
- Cloud and managed proxies: Bluecoat, McAfee, Zscaler and Prisma cloud, Netskope.
- Excellent understanding of IT & networking (routing, switching) & network security concepts & technologies.
- Analytical Troubleshooting experience – Familiar with Network Protocol Analyzers such as Wireshark, Fiedler.
- Excellent interpersonal and customer facing skills.
- Strong problem solving, analytical thinking and troubleshooting skills.
- Excellent phone manner and business communication skills.
- Good understanding of ITIL incident & change management processes.
- Fluent English (reading and writing)
- French Language is a plus.