Nokia is a global leader in the technologies that connect people and things. With state-of-the-art software, hardware and services for any type of network, Nokia is uniquely positioned to help communication service providers, governments, and large enterprises deliver on the promise of 5G, the Cloud and the Internet of Things.
Serving customers in over 100 countries, our research scientists and engineers continue to invent and accelerate new technologies that will increasingly transform the way people and things communicate and connect.
Organizations today are exposed to a greater volume and wider variety of attacks than in the past. These attacks are becoming increasingly more coordinated and targeted at critical telecom assets, including customer databases, intellectual property, and even physical assets that are driven by information systems.
As organizations move their services to Managed Services model, their need to track activities increases, for audit purposes and to effectively counter threats to the telecom infrastructure.
You will join the newly-created SIOC (Security Intelligence and Operations Center) with the mission to demonstrate to our customers Nokia’s security monitoring capabilities for telecom infrastructure.
Your key responsibilities :
Involved mainly in Operational Security Incident and Alert / Event Management (L1 / L2) to ensure our customers’ networks are optimized and running at agreed security targets.
As needed, provide real-time support to the resolution of major security outages.
Define Security Monitoring guidelines as per customer requirements.
Define events / alerts within the SIEM tool as per customer requirements.
Monitor SIEM components& infrastracture and create incidents to support team for action.
Address security issues according to customer-defined procedures and ensure their successful implementation in the network by creating Requests For Change (RFC) according to customer-
defined procedures. If appropriate, participate on RFC review boards in order to approve planned activity.
Create, update and manage the security knowledgebase.
Perform review and analysis with customer to help establish lessons learnt, create & update new / existing processes& procedures to mature the SIOC and SIEM services and support.
Conduct trend analysis of customer networks in order to identify over-utilization of assets, ineffective traffic routing, inappropriate traffic priority, the root cause of repetitive incidents, single points of failure, and other configuration weaknesses that detract from the performance of customer networks.
Commission preventative maintenance activities needed to keep customer networks running at optimal security levels.
Improve the use of auto-alarm correlation in order to minimize the number of alarms managed by Network Analysts and Network Service Engineers.
Your qualifications :
Technical and Professional Security Expertise / Security Event monitoring and Analysis
At least 1-year Security experience for L1 / 3+ years Security experience for L2
Fluent English (writing and speaking)
SIEM knowledge (Splunk, ArcSight, Q-Radar)
Basic Security and Network knowledge, Certified CEH, Security+, CISSP
Planning and organization
Analytical thinking and problem solving
Technical / Business insight and judgement
Internal customer focus
Team work and co-operation
Initiative and proactivity
Willing to provide 24 / 7 support (shift or on-call) for temporary periods of time, based on monthly team rotation
Nokia is an equal opportunity employer that is committed to diversity and inclusion.
At Nokia, employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.