Information security - socPosted: May 16, 2021, 6:44 a.m. - Full Time - Bengaluru
Minimum 4 years’ experience in SOC operations
Hands-on experience on any of the SOC solutions, SOAR knowledge is preferred
Incident handling, investigation and stakeholder communication
Good understanding of security tools – EDR/XDR, AV, MDM is preferred
Continuous monitoring, collection, and analysis of logs for any threats.
Security Incident Management including RCA.
Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
Responsible for ingestion of standard and non-standard logs in SIEM.
Dashboard creation and maintenance.
Creation and maintenance of technical documentation.
Proficient in Incident Management and Response.
Experience in security device management and SIEM (Splunk, Kibana, Arcsight, TrendMicro). Proficiency in any of the listed tool is preferable.
knowledge of security concepts such as cyber attacks and techniques, threat vectors, risk management, incident management etc.
Good knowledge of technologies like Operating Systems, AV/AM, Containers (Docker), Orchestrates (Kubernetes), Firewalls (Fortigate, Cisco), IPS, switches.
Experience in threat management.
Knowledge of various operating system flavours including but not limited to Windows, Linux, Unix.
Proficient in preparation of reports, dashboards and documentation.
Excellent communication skills.
Ability to handle high pressure situations.
Good Analytical skills, Problem solving and Interpersonal skills.