SOC Analyst

SOC Analyst-Kanchipuram

1 Nos.
84915
Full Time
5.0 Year(s) To 8.0 Year(s)
12.00 LPA TO 20.00 LPA
Job Description:
  • Handle Escalated incident tickets from L1 Team.
  • Analyse and investigate security events from various sources; Triage security events and incidents, detect anomalies, and report remediation actions.
  • Manage security incidents through all phases of the incident response process through to

Closure

  • Using SIEM, Full Packet Capture, Intrusion Detection, Vulnerability Scanning and Malware analysis technologies for even detection and analysis.
  • Developing knowledge of attack types and fine tuning detective capabilities such as writing

Vendor signatures.

  • Identifying log sources and examining system logs, which should record sufficient details about the normal activities of the system to allow a history of events to be reconstructed, making use of appropriate forensic techniques and technologies;
  • Triage on general information security tickets.
  • Undertake computer forensic investigations. Such as examining running processes, identify

network connections on a host, examining log data, disk imaging and memory capture;

  • Work in shift based on the shift roster.

Maintain and support the operational integrity of SOC toolsets

 

 

·         6-8experience in SOC Analyst role in managing L2 Support team.

·         Basic Knowledge on Network Traffic and analysis tools like Wireshark, SolarWinds.

·         Experience with Security Information Event Management (SIEM) tools, creating advanced co-relation rules, administration of SIEM, system hardening, and Vulnerability Assessments.

·         Knowledge and hands-on experience of implementation and management of IDS/IPS, Firewall, VPN, and other security products.

·         Should have expertise on TCP/IP network traffic and event log analysis.

·         Knowledge and hands-on experience with LogRhythm, QRadar, Arcsight, Mcafee epo, Sentinel or any SIEM tool.

·         Knowledge of ITIL disciplines such as Incident, Problem and Change Management.

·         Configuration and Troubleshooting experience on Checkpoint, Cisco, Fortigate, PaloAlto and Sonicwall firewalls would be an added advantage.

·         Professional Certifications like  GIAC, CCNP, CEH, Cloud Certification.

 

 

Company Profile

Client offers new age cutting technology services through its state of art data centers and cloud infrastructure. Backed by highly trained professionals offers an end-to-end transformational suite of services to all the industry verticals. Specialties Colocation, Cloud Services, Network, Security, and Data Center

Apply Now

  • Interested candidates are requested to apply for this job.
  • Recruiters will evaluate your candidature and will get in touch with you.

Similar Jobs