Be part of an exciting team that deals with bleeding-edge information security attacks and incident response situations on a daily basis.
As a Security Operations Center (SOC) Analyst within SecureWorks Managed Security Services (MSS) division you will aid in the management and monitoring of client IDS, IPS, firewall, DDoS mitigation, UTM, log management, and other devices.
Working in a security operations center environment with fellow security and networking professionals you will gain the skills necessary to identify client security breaches and act as a security advocate for a number of well-established global enterprise clients. You will leverage various internal platforms and use your in-depth understanding of exploits and vulnerabilities in order to provide network and data security for our clients.
You will be responsible for performing highly detail-oriented work that involves performing security threat analysis of various malware and web attacks, scheduling IDS signature platform updates and working with clients to remediate security related issues based on operational needs.
The Security Operations Center (SOC) Security Analyst is a member of a team who proactively manages IT security on behalf of customer to reduce the impact of security incidents and system compromises. The successful candidate will provide security monitoring, event analysis, and countermeasure proposals. This position requires shift work in a 24/7/365 environment.
Positions are based in Pune, India.
Role and Responsibilities:-
Recognize successful cyber intrusions and compromises through log review and analysis of relevant event detail information.
Launch and track security investigations to resolution. Recognize cyber attacks based on their signatures. Differentiate the false positives from true intrusion attempts and help remediate / prevent.
Analyze and assess security incidents and escalate to client resources or appropriate internal teams for additional assistance.
Actively investigate the latest in security vulnerabilities, advisories, incidents, and penetration techniques and notify client when appropriate.
Perform tasks as identified in a Security Operations Process Manual and runbooks.
Coordinate with Client's internal teams for relevant security incident investigations.
Conduct periodic Vulnerability Assessment and Reporting.
Customer-oriented with a strong interest in client satisfaction.
The ability to learn new technology and concepts quickly
Contribute individually for continuous improvement, being a role model to others.
Coach and mentor junior peers when called upon to do so.
- 2 - 4 years in SOC, Incident Response, Security Analysis, Security Monitoring, Security Incident Management.
- BE/ B. Tech/ MCA or graduate with relevant IT & Cyber security experience
Must have at least 4-7 years of experience working in SOC/NOC environment.
Knowledge of the following:-
SIEM, IDS/IPS, Endpoint Protection, Firewalls, Proxy
Security Analysis, Forensics, Incident Response, Pentesting, Vulnerability Assessment
Hands on knowledge of implementation and management of Intrusion detection systems (IDS/IPS), Firewall, VPN, and other security products is an added advantage.
Should have good knowledge on TCP/IP network traffic and event log analysis,