Soc l1Posted: May 2, 2022, 2:38 p.m. - Full Time - Bangalore and pune
• The security analyst, Level 1, works within the SOC (Security Operations Center) and is responsible for the monitoring of systems, investigating root causes, and coordinating with Level 2 and 3 engineers for analysis and response. • SIEM Alert Investigation. Monitor alerts and notices from firm’s managed SIEM solution. Alerts may require investigation, coordination, or escalation. • Monitor Endpoint Security, DNS Sec, Web Content Filtering, SIEM, Manage Engine, Email Security, AD Event on SIEM. • Web site blocks/ Exceptions. Using the Cisco Umbrella platform, manage exceptions to policies by whitelisting or otherwise allowing someone to access a site, once approved. • Perform vulnerability scans on new servers and other resources prior to allowing them to be put into production. Notify stakeholders of vulnerabilities to be remediated and
Steps to remediate them.
• Assist with regularly scheduled vulnerability scans. • Assist with the renewal and acquisition of certificates • Communicate policies with end-users • Create new ways to search for potentially suspicious events on systems • Participate in projects to improve security monitoring toolkits as well as to improve defensive controls • Any ITSM Tool Exp is must.