L2 Azure Sentinel Analyst
4 weeks ago
Overview :
LTIMindtree Limited is an Indian multinational information technology services and consulting company. A subsidiary of Larsen & Toubro, the company was incorporated in 1996 and employs more than 90,000 people.
Job Description :
- Improving Signal Noise Ratio, Developing Incident Response Workflow that can be automated.
- Perform security monitoring gap analysis using MITRE ATTACK framework and build corresponding process/framework for continuous evaluation as well as increase detection coverage.
- Provide support to the Security Operations Center (SOC) L1/L2 Analyst during incident response, event monitoring, and threat-hunting activities.
- Responsibilities include cyber threat analysis support, research, and recommending appropriate remediation and mitigation.
- Deep understanding of several of the following fields: Email security (including PDF and Document analysis), digital media forensics, monitoring and detection, incident response, vulnerability assessment, penetration testing, cyber intelligence analysis, and network analysis Trending and correlation of monitored events to build new Indicators of Compromise (IOC), attack attribution, and helping establish countermeasures increasing cyber resiliency.
- Identification of advanced cyber threat activities, Endpoint Detection Response, intrusion detection, incident response, malware analysis, and security content development (e. g., signatures, rules, etc. ); and cyber threat intelligence.
- Being flexible to work in 247 environments as per the business needs.
Skills & Requirements :
- SOC L2 Analyst + Azure Sentinel tool
- Ability to manage P1 /P2s Security Incidents through its lifecycle- Incident Handling.
- Intermediate level understanding of ATP, EDR, API Security, Identity Management.
- Security Incident Response and triage and able to do root cause analysis.
- Sound understanding of different log sources and event co-relations.
- Security use-case development and fine-tuning based on the requirements (hands-on experience with Azure Sentinel/Kusto Query language preferred).
- Developing incident response plans and working with team to contain identified threats.
- Tuning threat detection to minimize noise and amplify a signal.
- Design of new SOC workflows/metrics, reports, dashboards and processes to improve SOC scalability and efficiency.
- Maintaining proficiency by following the latest trends and developments in cyber security.
- Perform security automation to solve security use cases within the organization & continually improve threat detection capability and accuracy.
- Advanced level domain knowledge Cyber Security, Threat Hunting (Active hunting on network flow, user behavior and threat intelligence), SIEM - Azure Sentinel, Ability to Comprehend Logs (HTTP, SMTP, Network), Windows Active Directory, Operating systems and servers.
- Well-versed with different attack vectors/TTPs and be able to simulate non-invasive attack as needed.
- Ability to design and implement new approaches for detecting attacks and effective containment techniques, including scripting, analytics, and automation.
- Experience working with a selection of SIEM, TIP, malware analysis, and multiple sources of threat intelligence to properly categorize suspicious behavior.
- The ability to communicate complicated technical issues and the risks they pose to developers, network engineers, system administrators, and management.
- Excellent written and verbal communication skills, interpersonal and collaborative skills.
- Must be a critical thinker, with strong problem-solving skills.
- Ability to work independently, enjoys learning, and stays current with industry developments, regulations, and best practices.
- Preferred Security certifications such as CompTIA Sec+, CHFI, CEH, SANS, Certified Incident Handler, AZ-500 & AZ-900/SC-200 Hands-on experience SIEM with analysis and/or response to information security threats or incidents.
- Experience in performing performance health checks, tuning and optimization, Integrating log sources into SIEM technologies.
- Install / configure / build / fine - tune the SIEM tools to setup an effective information security support / operation.
- Establish KPI, review & manage security logs and provide reports based on KPI and metrics.
- Hands-on knowledge of Correlation rules creation / Update / Deletion.
- Good understanding of ITIL processes, ISO/PCI DSS, including Change Management, Incident Management, and Problem Management.
-
Azure Sentinel 6 to 9 Years Pan India
4 weeks ago
Pune, India Capgemini Full timeMust have strong experience into Solution Architecture, Design, and Implementation for Azure Cloud. - 5+ years of Experience in Enterprise SOC with focus on Incident investigation, Threat Hunting, Microsoft 365 Defender & DoS/, Azure Sentinel, Use case Building using KQL. - Required Good knowledge of SIEM, SIEM Architecture and Hybrid Integrations, Cyber...
-
Security Engineer
3 weeks ago
Bangalore, Karnataka, India VIPSA TALENT SOLUTIONS PRIVATE LIMITED Full timeJob Description :We are looking for a skilled Security Engineer with 5-9 years of experience to join our team. The ideal candidate should have expertise in Azure Sentinel, Defender, cloud security, security policies, Microsoft 365 Defender, and overall cloud security practices. The candidate will be responsible for implementing and maintaining security...
-
Security Engineer
2 weeks ago
Bangalore, India VIPSA TALENT SOLUTIONS PRIVATE LIMITED Full timeJob Description :We are looking for a skilled Security Engineer with 5-9 years of experience to join our team. The ideal candidate should have expertise in Azure Sentinel, Defender, cloud security, security policies, Microsoft 365 Defender, and overall cloud security practices. The candidate will be responsible for implementing and maintaining security...
-
Security Engineer
1 week ago
bangalore, India VIPSA TALENT SOLUTIONS PRIVATE LIMITED Full timeJob Description :We are looking for a skilled Security Engineer with 5-9 years of experience to join our team. The ideal candidate should have expertise in Azure Sentinel, Defender, cloud security, security policies, Microsoft 365 Defender, and overall cloud security practices. The candidate will be responsible for implementing and maintaining security...
-
Security Analyst L2
1 week ago
bangalore, India INSIGHT GLOBAL SOLUTIONS Full timeScope of Services :- Respond to security incidents and threat analysis.- Remediate high severity security incidents.- Lead & participate in threat hunting and threat intelligence activities.- Conduct advanced technical investigations for critical incidents paying attention to specific analysis and fast remediation advice with a focus on improving the...
-
Security Analyst L2
2 weeks ago
Bangalore, India INSIGHT GLOBAL SOLUTIONS Full timeScope of Services :- Respond to security incidents and threat analysis.- Remediate high severity security incidents.- Lead & participate in threat hunting and threat intelligence activities.- Conduct advanced technical investigations for critical incidents paying attention to specific analysis and fast remediation advice with a focus on improving the...
-
Azure L2 Lead
3 weeks ago
Pune, India BirlaSoft Full timeJob Description:Azure L2 EngineerPosition: Azure Level 2 Support EngineerJob Summary: The Azure Level 2 Support Engineer is responsible for providing technical assistance and support for Azure cloud services and solutions. They will handle escalated issues from Level 1 support and work closely with Level 3 support and engineering teams to troubleshoot and...
-
Azure L2 Lead
4 weeks ago
Pune, India BirlaSoft Full time. Job Description: Azure L2 Engineer Position : Azure Level 2 Support Engineer Job Summary: The Azure Level 2 Support Engineer is responsible for providing technical assistance and support for Azure cloud services and solutions. They will handle escalated issues from Level 1 support and work closely with Level 3 support and engineering teams to...
-
Azure L2 Lead
4 weeks ago
pune, India BirlaSoft Full timeJob Description: Azure L2 Engineer Position : Azure Level 2 Support Engineer Job Summary: The Azure Level 2 Support Engineer is responsible for providing technical assistance and support for Azure cloud services and solutions. They will handle escalated issues from Level 1 support and work closely with Level 3 support and engineering teams to...
-
Security Analyst
4 weeks ago
Pune, India Tech Mahindra Full timePrimary Skills: - SIEM technologies (LogRhythm)Location: Pune OnlyExperience Range: 1 – 3 Years(Early Joiner –Immediate to 15Days)Role:Security Analyst (U1)Base Location:Hinjewadi, Pune.Job Description1 to 3 years relevant experience in Cyber Security, SIEM, Event Analysis, Security Incident investigation and managementShould have an understanding about...
-
Azure Architect
4 weeks ago
Bangalore, India Linkage IT Private Limited Full timeExperience : 11+ YearsLocation : BangaloreType : ContractualDuration of contract : 6months to 1yearJob Description :- Azure CLI, Terraform and Powershell- Microsoft Cloud Adoption Framework- Container platforms and tools - Kubernetes, Docker, Azure Kubernetes Service, Azure Container Service- Azure Advanced Networking - Azure Virtual Networks, ExpressRoute,...
-
L2 Endpoint Engineer
47 minutes ago
bangalore, India POWER BRIDGE SYSTEMS PRIVATE LIMITED Full timeWe are seeking anexperienced L2 Endpoint Engineer to join our IT Services team. Asan L2 Endpoint Engineer you will be responsible for providingtechnical support and troubleshooting for endpoint devices. Youwill work closely with clients to ensure that their endpointdevices are functioning properly and meeting their business needs.Responsibilities: Provide...
-
Azure Security Engineer
4 weeks ago
Bangalore, India Domnic Lewis International Full timeAzure Security Engineer : Key Responsibilities : - Threat Detection and Incident Response: Monitor Azure environments diligently to detect security incidents, anomalies, and potential threats. Develop and execute incident response plans to promptly address and mitigate security breaches. Conduct thorough investigations of security incidents and offer...
-
Azure Security Engineer
4 weeks ago
Bangalore, India Domniclewis Full timeKey Responsibilities : - Threat Detection and Incident Response : Monitor Azure environments diligently to detect security incidents, anomalies, and potential threats. Develop and execute incident response plans to promptly address and mitigate security breaches. Conduct thorough investigations of security incidents and offer recommendations for...
-
L2 Support
4 weeks ago
bangalore, India Nityo Infotech Full timeKindly find below JD and company detailsTech SupportL2 support handles the tickets that L1 routes to them. This support team can also generate tickets for any problem they notice. L2 support specialists have more skills, more experience in solving complicated problems relevant to them and can help L1 support people troubleshoot problems.(L2 Support)Job...
-
Security Analyst
4 weeks ago
Pune, India Tech Mahindra Full timePrimary Skills: - SIEM technologies (LogRhythm) Location: Pune Only Experience Range: 1 – 3 Years (Early Joiner –Immediate to 15Days) Role: Security Analyst (U1) Base Location: Hinjewadi, Pune. Job Description 1 to 3 years relevant experience in Cyber Security, SIEM, Event Analysis, Security Incident investigation and management Should have an...
-
Security Analyst
4 weeks ago
Pune, India Tech Mahindra Full timePrimary Skills: - SIEM technologies (LogRhythm)Location: Pune Only Experience Range: 1 – 3 Years (Early Joiner –Immediate to 15Days)Role: Security Analyst (U1)Base Location: Hinjewadi, Pune.Job Description1 to 3 years relevant experience in Cyber Security, SIEM, Event Analysis, Security Incident investigation and managementShould have an understanding...
-
T24 Business Analyst
3 weeks ago
Pune, India Cognizant Full timeCognizant is Hiring T24 Business Analyst !!!Location: Chennai / PuneExp: 9 - 15years.JD:Job Title – T24 Business Analyst (L2 Finance)Designation:ManagerBackgroundThe T24 L2 Business Analyst is responsible for analyzing issues raised in production environment and provide resolution to the L3 development team for the finance and tax streams. This is a great...
-
Azure Application support
3 weeks ago
Pune, India CIEL HR Services Full timeHi,Years: 3+Job Description:Application Support Engineer with Basic Dotnet and Azure skillsShould know L3/L2 production support (Incident (Critical, high, medium and low) )and vided resolution within SLA time.Basic knowledge on C# dotnet framework and SQL with Application support.Knowledge on to administer the Azure environment via Azure Portal.Must have...
-
Azure application support
3 weeks ago
Pune, India CIEL HR Services Full timeHi,Job Description:3+yrs Application Support Engineer with Basic Dotnet and Azure skillsShould know L3/L2 production support (Incident (Critical, high, medium and low) )and vided resolution within SLA time.Basic knowledge on C# dotnet framework and SQL with Application support.Knowledge on to administer the Azure environment via Azure Portal.Must have...
