- Professional
- Oficina en Bangalore
Job DescriptionSecurity Operations Centre (SOC) Analyst plays a vital role in Security delivery. As a SOC Analyst, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents as they happen. You will work with other team members to provide situational awareness through detection, containment, and remediation of IT threats. This job requires great attention to detail and general awareness of Cyber Security tools like SIEM, XDR, EDR, IDS/ IPS, ability understand various logs – network logs, sys logs, Firewall logs. As a SOC Analyst you are expected to have working knowledge in areas of networking, malware analysis, incident response, vulnerability management.Threat & vulnerability analysisInvestigate, document & report Information security issues & emerging trendsAnalysis & response to unknown vulnerabilitiesResponsibilitiesAs a SOC Analyst – Level 1, you will:Monitor security logs and alerts from different security monitoring platforms and sources using SIEM and direct information on an advanced levelPerform Triage on Incidents detected.Submit incidents for a follow-up to functional maintenance.Track progress on incidents that have been submitted from outside of the SOCResolve Incidents as per Standard Operating Procedure (SOP)Propose and identify automation opportunities resulting from incidents.Prepare SOC Management Reports.Analyzing & preparing daily and monthly reports based on the devices which are being monitoredCreating Reports and Dashboards based on the customer requirement.Creating Reports which helps in providing the logs for the alerts, for finding any possible threats.Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths.Work under supervision of technical lead to accomplish assigned tasks.Change Management/ Implementation: Independently implement changes to meet customer infrastructure needs within area of technical responsibilityPatch and Security Management: Apply patch and security changes per policy."Configuration Management: Ensure Configuration Management Database (CMDB) entries are complete and accurate.Quality: Provide continual improvement recommendations for direct responsibility area (process improvement, technical standard updates, etc).Project Management: Participate in customer and internal projects, including transformation.Customer Relationship Management: Set expectations with customers and/or internal businesses/end users within defined parameters.Teamwork: Work as part of a team, which may be virtual and/or global. Participate as part of a team and maintains good relationships with team members and customersSkill2-4 years of relevant experienceTypical skills include:Sufficient depth and breadth of technical knowledge to be individually responsible for the implementation of a specific deliverable.Understanding of technology in direct responsibility (SIEM, XDR, EDR, MDR)General understanding of related technologies (Networking, Operating Systems)Customer ServiceGeneral Project Management (Basic)Customer/Vendor Management (Basic)Able to communicate broad and specific concepts with team and to peers.Able to produce documentation for use by team and customer.Good verbal & written communication skillsProactive approach to meet & exceed goalsQualification & ExperienceBachelor’s Degree in Engineering, Computer Science2 – 4 years of relevant experience in SOC domainUnderstanding of ITIL processSecurity related certifications (Security+, CEH) will be an added advantage
Solicitar ahora