Associate - Cyber Security

Mitsui O.S.K. Lines (MOL) is one of the world's largest multimodal deep-sea carriers, with a rich maritime legacy spanning over **140 years**. Operating across **Asia, the Middle East, Europe, Africa, North America, South America, and Oceania**, MOL connects global trade routes with a strong presence in international shipping and logistics.

**MOL Information Technology (MOL-IT)** is the **dedicated ICT solutions provider** for the MOL Group, delivering **customized technology solutions** across the **shipping, logistics, and supply chain domains**. Established in **1997**, MOL-IT has expanded significantly, operating from **four offices** in **Kolkata, Hyderabad, Mumbai, and Hong Kong**, with a talented team of over **380 software and management professionals**. As part of its growth strategy, MOL-IT is **enhancing its suite of ICT solutions** for existing customers while exploring opportunities to diversify beyond the MOL Group.

**Challenge**
- Innovate through insight

**Honesty**
- Do the right thing

**Accountability**
- Commit to acting with a sense of ownership

**Reliability**
- Gain the trust of customers

**Teamwork**
- Build a strong team

**Safety**
- Pursue the world’s highest level of safety culture

**Position Overview**:
As a Software Analyst, you will contribute to requirement analysis sessions to understand business needs and create comprehensive requirement documents (BRD, etc.). Collaborate with stakeholders to translate business objectives into technical solutions. Contribute to designing software solutions that meet project goals and industry standards, considering scalability and usability

SOC Security Analyst (L2) will be responsible for responsible for day-to-day security threat monitoring and analysis. You will manage security incidents and review security alerts. You will work on known or suspected security threats. You will also work on threat intelligence, forensics and incident response adhering to security practices and frameworks. You will be part of 24x7 Security Operations Centre (SOC) team. You will be required to work in shifts.

**Responsibilities**:

- Experience of monitoring threats in a 24x7 Security Operation Center (SOC)
- Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for SOC.
- Correct root cause analysis as well identify suitable corrective steps.
- Perform deep packet analysis, collection of IOC (Indicator of Compromise).
- Collection of evidence, malware reverse engineering and write custom scripts whenever required.
- Threat mitigation and reporting are top priority for this position.
- Rule base Management, SOC Fine tuning and administer SIEM tools
- Manage and coordinate with team to accomplish daily operational tasks as per defined standard and Maintaining the SLA’s.
- Identify vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.
- **Advanced working skills with Microsoft Sentinel, Cortex XDR, Trend Micro Exchange Security, Microsoft Defender for Endpoint, Fortigate etc.**:

- Relevant certification is a plus. Good working knowledge with SOAR and EDR tools.
- Investigate and respond to security incidents. Document and report on information security issues
- Evaluate and implement SIEM use cases.
- Document and continuously improve playbooks.
- Monitor for threats, analyze, and escalate as per process.
- Analyze functional and technical cases and provide a resolution in accordance with agreed metrics.
- Knowledge about different type of attacks like XSS, CSRF, LFI, Bruteforce, MITM etc.
- Basic knowledge of Linux operating system and windows events logs
- Manage and support the log collection, security scanning, intrusion detection, proxy, mail gateway and other security technologies.
- Review, triage security alerts, provide analysis, suggest remediation, track remediation.
- Support in resolving security incidents.
- Monitor networks and systems for potential threats.
- Respond to incidents by collecting, analyzing and preserving digital evidence to assist with remediation of critical information security incidents.
- Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment.
- Ability to write technical documentation and present technical briefings to diverse audiences.
- Strong understanding of threat landscape in terms of the tools, tactics, and techniques of threats employing both commodity and custom malware.
- Current knowledge of security threat intelligence and recent attack vectors
- Strong forensics analysis skills

**Minimum Qualification & Background**:

- 3-5 years of Information Security experience. Minimum 3 years in a large 24x7 Security Operations Centre (SOC)
- Relevant security certification CEH, CompTIA Network Security Plus, CHFI, Certified SOC analyst will be a plus.
- Basic knowledge about