SOC Analyst - Philips Electronics Nederland B.V.

Your Challenge

The SOC Specialists main objectives are to contribute following a multidisciplinary approach to the key SOC operational tasks: content delivery, detection, monitoring and response.

SOC specialists integrate into a multidisciplinary pool of resources with the ability to perform in several cross functional aspects in Security Operations which are equally needed to deliver a proactive and avant-garde cyber defensive capability.

Following business and operational efficiency principles, proactive and performance-oriented activities are performed. This involves (analytical) activities to enable intelligence gathering and usage, improving detection capabilities and ability to perform in the triage processes (detect and response)Typical outputs from the SOC specialist function are:

• Integration and enhancement of the cyber threat intelligence
• Solution engineering, use case development and technical architecture
• Event triage and response
• Focused forensic investigations
• Delivery of performance indicators for the different SOC areas
• Support and escalation point for other functions

Your Responsibilities

The SOC Specialist is expected to be able to deliver value in the following areas of expertise:

 

Threat Intelligence:

• Discovers, analyzes and prioritizes new threat intel sources
• Integration of intelligence feeds into the operational processes- Content Delivery:
• Develops content, such as scripts, use cases for SIEM, queries for log management or automated data gathering for forensics.
• Creation of overall situational awareness, combining outputs to be further used by the SOC- Detection & Response:
  • Perform anomaly detection and malware hunting
  • Manage security incidents to conclusion
  • Perform forensic investigations

  

You are responsible for:

• Deliver value in Threat Intelligence: create situational awareness, integrate and fuse intelligence from different sources, proactively determine if new sources are available, improve the intelligence capability;
• Execute solution engineering and technical architecture: Integrate security technologies, create and implement content, create and optimize SOC workflows;
• Perform advanced threat detection, malware and threat hunting, anomaly detection and security analytics;
• Execute threat response: forensics, crisis management and creation of mitigation courses of action;

You are a part of

The Security Operations team within Philips works diligently to provide reliable and secure services across the global enterprise. The team has a focus on system reliability and security through the continuous operation of secure solutions. The Security Operations Center (SOC) consists of a 24/7 incident response capability, a threat intelligence team and dedicated security engineering and development staff.

The SOC specialists work in a close teaming approach with other SOC specialists, and involve when necessary other Subject Matter Experts.

With a growing presence in cardiology, oncology, and women's health, Philips operates in the areas of Imaging Systems, Patient Care & Clinical Informatics, Home Healthcare and Customer Services. Philips combines its clinical expertise and human insights to create innovative solutions across the continuum of care, in partnership with clinicians and our customers, to provide better value and expand access to care for millions. Our teams are working hard every day to improve patient outcomes all the way from disease prevention and screening to diagnosis, treatment, therapy monitoring, and disease management. Irrespective of whether the care cycle takes the patient from doctor's office to hospital or hospital to home, or simply from one medical department to another, Philips Healthcare's unique medical solutions are designed to optimize the quality and flow of patient information and clinical decision making.

You will be employed by YER and seconded to Philips. We offer:

• Excellent Remuneration (depending on level of expertise)
• Good employee benefits (e.g. work-life balance, pension, commuting allowance or potentially a lease car)
• Intensive support for international candidates (Including, Visa support, 30% rule, Free Dutch lessons, tax-return and accommodation assistance)
• Community/network/assignments with other technology professionals from a variety of our multinational clients; ASML, Philips, NXP, KLM, Rabobank, Siemens, MSD, Canon etc.
• Development opportunities, full access to the New Heroes training portal & the YER Talent Development Programme with a personal coach
• Excellent guidance from your consultant and YER's back office
• Events and master classes with interesting speakers and attractive companies

We are looking for:

The ideal candidate must have a passion for security and all things technical, with a good understanding of adversary motivations in cybercrime and the tools and techniques of the trade. Previous experience working in Security is a must, SOC specific experience is preferred. Working as part of the team in a 24/7 service and onsite are pre-requisites.

To succeed in this role, you should have the following skills and experience:

• Prior experience working in a Computer Emergency Response Team (CERT/CIRT) or IT security environment
• Proficient with networking concepts and protocols (such as DNS, HTTP(S), SMTP, FTP, etc.)
• Proficient programming skills and solution engineering skills: SIEM, Log Management, Ticketing Systems, Workflow Automation, Scripting, Networks Management
• Certifications such as GSEC, GCIH, GCIA is preferred
• Trustworthiness and integrity
• Ability to take decisive action based on available information in a timely manner
• Bachelor degree or equivalent combination of education and (work) experience
• 7~; years working in the IT field
• Working in shifts, standby roster for outside of business hours?