• 8 active jobs (view)

  • Published: May 26, 2022
Job Type
Level of education
Vocational qualification
Spoken Language needed
Level of Hebrew
Location of job
Tel Aviv/ Ramat Gan
How many relevant years experience do you require for the role:
More than 3 years


UST GlobalĀ® is a leading provider of platforms, digital innovation, artificial intelligence and end-to-end IT services and solutions for Global 1000 companies. We are transforming corporations through deep domain expertise, knowledge-based ML platforms, as well as profound anthropological efforts to understand the end customer and design products and interactions that create delight. We are deeply committed to developing a comprehensive understanding of our client's problems and developing platforms to address them.

CyberProof is a fully owned subsidiary of UST Global that helps companies increase their cyber resiliency and reduce their cyber risks by providing a Managed Detection and Response service powered by the Cyber Defense Center (CDC) platform, a proprietary incident management system. The service dramatically increases the ability to react, detect and respond to customer cyber-attacks. CyberProof provides 24x7 security operations capability, supported by expert cyber security resources and cutting-edge tools, along with mature operational methodologies to address our customers' cyber security operations requirements. The advanced CyberProof Defense Centers are Azure Cloud-based and located around the globe. Our goal is to provide enhanced detection abilities, faster response, collaborative issue resolution, effective recovery, and actionable intelligence delivered through our state-of-the-art Security Orchestration, Automation, and Response CDC platform to increase scale and differentiation for our customers.

At the core of what we do is our people. The Security Operations Group of CyberProof consists of a global team of 350+ highly talented people including experienced security operations experts, certified cyber security experts, researchers and analysts, project leaders, consultants, and sales professionals. Individuals and teams in this group work closely with client cyber security teams and customer CISOs, CIO and/or senior business management on business & cyber security strategies and solutions.

Job Description

Members of this team will develop and document Alert/Incident Triage and Response processes for the Security Operations L1 and L2 analysts to follow. This will include Investigation Guidelines and recommended actions, investigation research procedures, and recommendations for automation to enable rapid response to alerts/incidents. Also included in this role is the creation and maintenance of Use Case Kit content and metadata within the Use Case Kit Library.

This position should be based in Israel and will interface closely with both India and Tel Aviv SOCs.

Key Responsibilities for the Senior Playbook and Use Case Content Developer

- Evaluate alert/incident response requirements from stakeholders and determine the feasibility of response goals.
- Develop and document Alert/Incident Triage and Response processes.
- Create Investigation Guidelines and recommended actions for Alerts/Incidents.
- Identify procedures that are frequently repeated or systematic in nature that are candidates for automation.
- Ensure completeness and accuracy of the Use Case Kit content and metadata.
- Train the SOC L1 teams on newly developed triage and response procedures as part of the operational acceptance of Use Case Kits.
- Mentor, train, and support the less senior Playbook and Use Case Content Developers.

UST Global/CyberProof offers a diversified and attractive international environment. We will offer an attractive package that will be based on your experience and profile, including a competitive salary, a performance-related annual bonus, and additional benefits.


- Minimum of 5 years of experience in Information Security.
- In-depth operational experience with SIEM technologies.
- Minimum 2 years experience in playbook and IR response development.
- Minimum of 2 years experience working in a SOC performing Alert/Incident Management and Response as a Level 1 Analyst.
- Minimum of 1-year experience working in a SOC performing Alert/Incident Management and Response as a Level 2 Analyst.
- Demonstrated process orientation and ability to manage complex tasks.
- Strong communicator and fluent in English.

Desired Skills :

- Penetration Testing experience or Security Assessment consulting.
- Any of the following certifications are a plus: CISSP, C|EH, CISA, CISM, C|CISO, GIAC, CompTIA Security+, NCSF, CCSP, GIAC (any).
- Organized with a proven ability to prioritize workload, meet deadlines, and utilize time effectively.
- Excellent interpersonal and communication skills work effectively as a team player
- Analytical skills

(Check on your spam box)
Drop files here browse files ...

Related Jobs

June 29, 2022
March 21, 2022
July 16, 2021