The SOC Specialists main objectives are to contribute following a multidisciplinary approach to the key SOC operational tasks: content delivery, detection, monitoring and response.
SOC specialists integrate into a multidisciplinary pool of resources with the ability to perform in several cross functional aspects in Security Operations which are equally needed to deliver a proactive and avant-garde cyber defensive capability.
Following business and operational efficiency principles, proactive and performance-oriented activities are performed. This involves (analytical) activities to enable intelligence gathering and usage, improving detection capabilities and ability to perform in the triage processes (detect and response)
Typical outputs from the SOC specialist function are:
Integration and enhancement of the cyber threat intelligence
Solution engineering, use case development and technical architecture
Event triage and response
Focused forensic investigations
Delivery of performance indicators for the different SOC areas
Support and escalation point for other functions
The SOC Specialist is expected to be able to deliver value in the following areas of expertise:
Discovers, analyzes and prioritizes new threat intel sources
Integration of intelligence feeds into the operational processes
Develops content, such as scripts, use cases for SIEM, queries for log management or automated data gathering for forensics.
Creation of overall situational awareness, combining outputs to be further used by the SOC
Detection & Response:
Perform anomaly detection and malware hunting
Manage security incidents to conclusion
Perform forensic investigations
You are responsible for:
Deliver value in Threat Intelligence: create situational awareness, integrate and fuse intelligence from different sources, proactively determine if new sources are available, improve the intelligence capability;
Execute solution engineering and technical architecture: Integrate security technologies, create and implement content, create and optimize SOC workflows;
Perform advanced threat detection, malware and threat hunting, anomaly detection and security analytics;
Execute threat response: forensics, crisis management and creation of mitigation courses of action;
You are a part of
The Security Operations team within Philips IT works diligently to provide reliable and secure services across the global enterprise. The team has a focus on system reliability and security through the continuous operation of secure solutions. The Security Operations Center (SOC) consists of a 24/7 incident response capability, a threat intelligence team and dedicated security engineering and development staff.
The SOC specialists work in a close teaming approach with other SOC specialists, and involve when necessary other Subject Matter Experts.
We are looking for:
The ideal candidate must have a passion for security and all things technical, with a good understanding of adversary motivations in cybercrime and the tools and techniques of the trade. Previous experience working in IT Security is a must. Working as part of the team in a 24/7 shift pattern and onsite are pre-requisites.
To succeed in this role, you should have the following skills and experience:
Prior experience working in a Computer Emergency Response Team (CERT/CIRT) or IT security environment
Proficient with networking concepts and protocols (such as DNS, HTTP(S), SMTP, FTP, etc.)
Certifications such as GSEC, GCIH, GCIA is preferred
Trustworthiness and integrity
Ability to take decisive action based on available information in a timely manner
Bachelor degree or equivalent combination of education and (work) experience
7+ years working in the IT field
Working in shifts, standby roster for outside of business hours
In return, we offer you
A path towards your most rewarding career. Philips is growing its marketing capability enterprise wide. Succeeding in this market-based role in a complex environment will open many doors for your long term career, in other areas in Philips or otherwise. We also believe that we are at our best as a company when you are at yours as a person. Thus, we offer competitive health benefits, a flexible work schedule and access to local well-being focused activities. Furthermore, Philips University is available to all employees for learning and development opportunities.
Why should you join Philips?
Working at Philips is more than a job. Its a calling to create a healthier society through meaningful work, focused on improving 3 billion lives a year by delivering innovative solutions across the health continuum. Our people experience a variety of unexpected moments when their lives and careers come together in meaningful ways. Learn more by watching this video.
To find out more about what its like working for Philips at a personal level, visit the Working at Philips page on our career website, where you can read stories from our employee blog. Once there,you can also learn about our recruitment process, or find answers to some of the frequently asked questions.
If you forgot your password, you can click the Forgot Password button on the Sign In screen to reset it.
If you have any other questions regarding the recruitment process please refer to our FAQs. In case of technical difficulties with the website, please send an email to firstname.lastname@example.org. (Note: To ensure fairness and legal compliance in our recruitment processes, only technical issues will be monitored through the above inbox. Please do not submit resumes or applications to this email, as they will not be reviewed. Only applications received through the online application process will be considered.)