Senior security analyst

Posted: July 27, 2020, 10:28 a.m. - Full Time - Bengaluru

Must have at least 6-8 Years of experience on SOC

  • Hands on experience in the areas of Security information and event management (SIEM)
  • Good in SIEM rule creation /tuning and modification as per business need Forensics activity on major security incidents post remediation.
  • Responsible for performing security monitoring, investigation and analysis of events to thwart internal and external threats.
  • Should conduct forensic analysis on a multitude of security tools with in heterogeneous environment
  • Review trouble tickets generated by L1/L2 analysts                                                    
  • Leverage emerging threat intelligence ( IOCs, updated rules, etc.) to identify affected systems and the scope of the attack
  • Provide analysis and trending of security log data from many heterogeneous security devices
  • Provide threat and vulnerability analysis as well as security advisory services
  • Experience managing network security technologies including but not limited to DLP / IPS / Firewalls / Proxies etc...
  • Should have experience on content development for SIEM including Rules, Reports, Custom parser and Dashboard.
  • Good knowledge on Security fundamentals including Endpoint, Malware analysis, intrusion prevention and detection system.
  • Exposure to SIEM technologies for log analysis, event analysis, incident investigation, reporting and also develop new rules and policies for incident detection.
  • Generate Security Metrics that will help Senior Management to understand the effectiveness / gaps in security infra / incident management process
  • Create Supporting documentation that enabled governance over all aspects of Incident management.
  • Skills required  (Personal & Behavioral )                                            
  • Good Oral, verbal and written communication skills.                                    
  • Should be a People Manager and able to manage a team of 8-10 resources
  • Must be willing to interact with US customers and with excellent customer facing skills                                                          
  • Good in team work and customer etiquette.                                                  
  • Should be willing to work on shifts within 8 am - 12 AM IST. Need to handle escalation over weekend in case to case basis                             
  • Candidates with  SIEM products certification and similar security certifications are preferred.
  • Certifications like CEH / CISA / CISSP / CISM / SANS would be added advantage