Junior Security Incident Responder

Role: L1 SOCLocation: Hyderabad Shift Timings: Rotationalabout alliantgroup alliantgroup is a professional services firm that provides tax consulting and compliance services to businesses in the United States. The company was founded in 2002 and is headquartered in Houston, Texas. alliantgroup services are focused on helping businesses claim tax credits and incentives that they are entitled to under various federal and state programs. These credits and incentives are designed to encourage businesses to invest in certain types of activities, such as research and development, energy efficiency, and hiring employees from certain disadvantaged groups. alliantgroup services include helping businesses identify and claim these credits and incentives, as well as providing guidance on compliance with the relevant regulations. alliantgroup is headquartered in Houston, Texas with additional offices located in Austin, Boston, Chicago, Indianapolis, New York, Irvine, Sacramento, Washington, D.C.; and Bristol and London in the U.K. More about our culture and why we love alliantgroup https://youtu.Be/nM_9fXXwyrg https://youtu.Be/erJobvthqRw alliantgroup India Talent Pvt. Ltd: alliantgroup started its operations in India in the year 2020 with a world-class office in Hyderabad to provide Tax, Advisory, Audit and Accounting services. alliantgroup India Talent comprises a team of skilled professionals who address the most pressing needs of U.S CPA Firms. We work with the best talent and ensure our clients get top quality services they need. We are currently a family of 1000+ employees. Our people and culture set us apart as a firm, and our team includes professionals from a diverse array of fields, including business, engineering, software development, law, and accounting. Alliant Cybersecurity Alliant Cybersecurity created a full-service cybersecurity consultancy for American businesses. We are technology and vendor agnostic and have a customizable security plan that can be made to fit any business’s needs. Our team has seasoned penetration testers, auditors, technologists, and security analysts to help with client’s needs whether it’s a one-time project or permanent outsourced cybersecurity to our Managed Security Operations Center. We are here as an extension of client’s team, offering straightforward solutions to everyday cybersecurity challenges especially in the moments that matter most. Role Overview Alliant Cybersecurity is seeking an experienced Level 1 analyst based in Hyderabad to help expand its Cybersecurity and Risk Advisory practice. This position primarily supports US-based customers and requires flexibility to work during US business hours.What You'll Do: Security Operations & Investigation:Knowledge of security monitoring technologies and cored security principlesDirect experience with any SIEM or log aggregation systemAbility to review captured network traffic, and compare against the contents of a security alert to verify the nature of the detectionExperience and familiarity with IT management products and servicesExperience analyzing Firewall, IDS, IPS, Web Proxy, Anti-Virus and SMTP data for security-related concerns and eventsSkilled at using multiple operating systemsScripting skills in any common language (Python, Perl, Bash or Powershell) is a plusAbility to suggest technical solutions to complicated problemsResponsibilities:Operational security monitoring to include: review security alerts, conduct triage analysis of related security events, make true/false positive decisions, make escalation decisions (to senior analysts or to the Incident Response process), and make initial severity determinationsManage and administer a SIEM, develop reports and other capabilities to support the needs of our clientsIdentify data sources and analytics for inclusion into SIEMConduct trending analysis of security alerts and events to identify patterns indicative of new unauthorized activityDevelop new signatures and correlated searches based on a variety of requirementsIdentify log and event sources including Active Directory event logs, Routers, Switches, Firewalls, PCAP/Flow data, DNS, audit and authentication logs, VPN, IDS, and other sensor field tools and technologiesMake recommendations on new threat feeds and tools to help evolve automated threat detection capabilities as well as aid in computer forensic and historical investigationsProvide Cybersecurity and Threat Analyst services to support active information security incidents and events from the Logging and Event Management solutionCoordination with ISMS core team to support ISMS activities and implantation strategies at the company. Education: Bachelor’s degree in computer science, Engineering, or other related disciplines. Certifications: Professional Security certifications are a plus What are we looking for: Minimum 2 years of SOC experienceknowledge in:Computer ForensicsReverse EngineeringIDS/SIEM/Log ManagementThreat IntelligenceMalware AnalysisEDR & Incident ResponseVulnerability ManagementEssential Skills:Rigorous process adherence and attention to detailStrong time management and multitasking abilitiesInformation security mindsetTeam leadership capabilitiesExcellent analytical and problem-solving skillsOutstanding communication and documentation abilitiesAutonomous and self-organizedExperience in tactical coordination during incidentsWhat we offer: With us, there are always opportunities to break new ground. We empower you to take the organization to the next level with the versatile experience that you bring in. We trust you with responsibility early on and support you in all ways to make this organization as trusted partner to the customers and a great place to work for the employees. Join us and bring your curiosity to life