SOC Red/purple Team

**SOC Red/Purple Team**
**Location**: Bengaluru

**About Terraeagle Technologies**: Terraeagle Technologies is a leading provider of comprehensive Cybersecurity Services, specializing in Managed Detection and Response (MDR) as a Service, Security Operations Centre (SOC) as a Service, and Incident Response Retainer Services.

We are committed to safeguarding our clients' digital assets
and proactively defending against cyber threats.

**Role Overview**:
vulnerabilities. The SOC Red/Purple Teamer will play a crucial role in analyzing security risks, recommending mitigation strategies, and communicating findings to stakeholders.

**Key Responsibilities**:
**1. Security Assessment and Threat Analysis**:
I. Conduct intelligence-led security assessments, including vulnerability scanning and penetration testing, on various assets such as web, network, mobile, and cloud.
II. Analyze assessment results to identify critical vulnerabilities and recommend effective mitigation strategies.
III. Research and stay updated on emerging threats, vulnerabilities, and zeroday exploits.

**2. Threat Detection and Reporting**:
I. Use statistical analysis, Python, and PySpark to derive insights from large datasets and identify trends and anomalies indicative of malicious activity.
II. Craft detailed and actionable reports on threat discoveries and intelligence for stakeholders at all levels.

**3. Incident Response and Collaboration**:
I. Collaborate with Incident Response, Security Operations, and other security teams to address complex threats and incidents.
II. Provide guidance and expertise to enhance the organization's overall security posture.

**4. Alert Triage and Analysis**:
I. Analyse security logs and events to identify patterns and anomalies.
II. Triage alerts to distinguish between false positives and true security incidents.
III. Conduct thorough analysis of security alerts to identify potential threats and vulnerabilities.
IV. Correlate alerts from various sources to identify complex attack patterns.

**5. Research and Development**:
I. Research and design repeatable analytics, heuristics, and rules-based detection methods for threat identification.
II. Develop and execute comprehensive attack scenarios to simulate sophisticated cyber-attacks.

**6. Documentation and Communication**:
I. Generate daily and weekly reports on SOC activities, including incident summaries and trend analysis.
II. Document investigation findings, procedures, and outcomes for future reference and recommendations in clear and concise reports.
III. Communicate security risks and mitigation strategies to stakeholders effectively.

**7. Continuous Improvement**:
I. Continuously enhance red teaming methodologies, tools, and processes to keep pace with evolving threats and industry best practices.
II. Contribute to improving the organization's overall security posture through guidance, expertise, and training.

**Qualifications**:
1. Bachelor's degree in Computer Science, Information Technology, or a related field.
2. 2-3 years of relevant experience.
3. Proven experience in intelligence-led security assessments and penetration testing.
5. Experience with vulnerability management tools and frameworks.
6. Strong analytical, problem-solving, and written/verbal communication skills.
7. Proficiency in Python, PySpark, and scripting for statistical analysis.
8. Familiarity with SIEMs, security tools, frameworks, and kill chains.
9. Security certifications such as CRTP, CRTE, OSCP, OSCE, CRTO, Pen Test+, CPENT, GPEN, AWS Security are a plus.
10.Openness to learning new security trends and technologies.
11.Flexibility to work in rotational shifts if required.
12.Excellent communication and collaboration skills.

**Terraeagle Advantage**:
1. Competitive salary and benefits package.
2. Opportunity to work with a high-performing team in a dynamic and growing company.
3. Collaborative and inclusive work environment.