Associate SOC
4 weeks ago
Hubli, India
Publicis Re:Sources
Full time
Responsibilities
- Understand business security requirements and develop accurate and realistic design plan along with risk mitigation solutions for the project.
- Have a broad technical and deep security-based background.
- Able to take highly technical requirements & create easy to understand, complete standard operating procedures.
- The Analyst works with multiple technology platforms and interfaces with other groups within Enterprise Infrastructure Services, IT architecture, Enterprise Application Services, and other technology and business functions. Additionally, the role requires familiarity with recent threats and adversarial techniques, as well as the ability to quickly understand complex environments.
- Support elements of the Investigation and resolution as required and where necessary report incidents involving potential or actual breaches of protective security compliance.
- To undertake testing and validation of hardware, firmware, and software for possible impacts on security.
- Work with vendors to support the SIEM technology (troubleshooting, upgrades, etc.) Administration of the SIEM tools which includes configuring policies, upgrading, and patching, etc.
- Monitor and respond to alerts generated from the SIEM systems and other technologies.
- Understand and follow the incident response process through event escalations.
- Respond to escalations by the Incident Response Team.
- Follow processes to maintain the SIEM system.
Required Skills
- Threat Hunting
- Threat Intel
- SIEM Administrator
Qualifications
3+ Years of Security domain experience with minimum of 2+ years of Splunk SIEM Administrator
Personal Attributes
- Strong and innovative approach to problem solving and finding solutions
- Excellent communicator (written and verbal, formal and informal)
- Flexible and proactive/self-motivated working style with strong personal ownership of problem resolution
- Ability to multitask under pressure and work independently with minimal supervision
- Ability to prioritize when under pressure
- Able to work with remote employees & teams to create highly effective documentation