At least 3 years of relevant experience in IT Security or with Security Operations Center.
Knowledge of various security methodologies and technical security solutions.
Experience analyzing data from cybersecurity monitoring tools such as SIEM / SOAR platforms.
Knowledge of commonly accepted information security principles and practices, as well as techniques attackers would use to identify vulnerabilities, gain unauthorized access, escalate privileges, and access restricted information.
Strong understanding of security operations concepts: perimeter defense, endpoint management, data leak prevention, kill chain analysis and security metrics.
Knowledge of the common attack vectors on various layers.
Knowledge and experience working with the Cyber Kill Chain Model, MITER ATT&CK Matrix.
Experience in transport/shipping/logistics is a plus.
