A Network Operations Center (NOC) technician/analyst plays a crucial role in ensuring the smooth operation of an organization's network infrastructure.
The job responsibilities are as follows:
Monitoring, Escalation and Preliminary Troubleshooting:
Monitor network & server performance and availability using infrastructure monitoring tools.
Identify and escalate network& server issues, disruptions, and outages.
Collaborate with other IT teams to escalate complex technical issues.
Perform real-time monitoring, assessment, and triage of IDS alarms and Rapid7's Security Information and Event Management (SIEM) console, collects cyber news, and fields phone calls from users of the systems affected by the cyber threats.
Incident Response:
Responding to and resolving incidents escalated from lower support tiers.
Document incident details, actions taken, and resolutions.
Assist in the development of root cause analysis reports of all incidents managed by the SOC / NOC
Document implemented measures to prevent recurring incidents.
Provide recommendations on incidents awareness capabilities through best practices, standards, and processes for optimal watch operations performance.
Infrastructure Maintenance:
Perform necessary alert suppression around routine infrastructure maintenance schedules.
Reverting alert suppression and confirming that all situated alerting/dashboards/views are back for normal use upon completion of maintenance.
Coordinate with vendors for hardware and software upgrades.
Documentation:
Maintain accurate documentation of procedures, and policies and possible changes to SLA.
Prepare, maintain, and update the NOC daily Turnover Report
Assist in preparing weekly and monthly metric reports utilizing Tableau or Microsoft PowerBI
Collaboration:
Work closely with other IT teams, including system administrators and security professionals.
Communicate effectively with stakeholders and end-users regarding network or server-related issues/outages/disruptions.
Capacity Planning:
Monitor network traffic, server health checks and analyze trends to assist in capacity planning.
Recommend upgrades and improvements based on capacity and performance analysis.
Security:
Stay informed about the latest security threats and implement necessary measures.
Monitor, assess, and log vulnerability notifications and related reports from public and private entities that interact with the client. Tracks agency patch activities for reported vulnerabilities.
Assist in performing advanced threat detection and assessment to culminate in new and/or revised indicators of compromise.
24/7 Monitoring:
A team member providing 24/7 monitoring and support for the entire infrastructure.
Participate in on-call rotations for after-hours support.
Skills and Qualifications:
Technical Proficiency:
Strong understanding of networking concepts and protocols.
Familiarity with routers, switches, firewalls, and other network devices.
Knowledge of network monitoring tools.
Problem Solving:
Analytical and problem-solving skills to troubleshoot network issues.
Communication:
Excellent communication skills to interact with team members and end-users.
Ability to document procedures and technical information clearly.
Team Collaboration:
Ability to work collaboratively with cross-functional teams.
Adaptability:
Ability to adapt to changing priorities and handle multiple tasks simultaneously.