SOC - L2

**Softline International**
***
**is**
**hiring**

If you want to be part of global organization (GPTW of you’ve it in your country) where your ideas are heard and innovation and collaborative spaces are fundamental pillar, we are here for you.

Our priority is to make sure that the people who work with us have the space to create ideas, the confidence to share them, and the resources and support to take them through to reality.

About 30 years we help companies make the right changes to ensure their success in digital transformation by providing end-to-end technology solutions including infrastructure, cloud, virtualization, collaboration, security, mobility and data center. We have quite broad geographical presence - more than 55 countries across 95 cities. Besides recently we have had IPO experience so you could easily find our results - for instance, our revenue is 2.5 billion now.

Now we’re looking for (SOC - L2) You’ll be a part of our (Service Team).

**Job overview**:Security Operation Center will work in services delivery role for customers managing the design and delivery of Security solutions. This role is highly customer focused, requires ability and willingness to travel and to be able to work in a growing organization

**What you’ll do**:

- Provide initial triage for all SIEM alerts. (anyone Qradar, Splunk, Arcsight, Sentinel or other)
- Ability to analyze event logs and recognize signs of cyber intrusions/attacks.
- Responsible for incident sent by L1 team for deep investigation, evidence collection, diagnosis, recovery within defined SLA and closing incidents.
- Understand information security policies and procedures defined in customer environments.
- Validate the Incidents reported by SOC L1(analysts/operators. The standard SLA to be kept for each incident validation is 30 mins)
- Interact with concerned external parties/clients to resolve the queries related to the incidents raised.
- Create/modify SOP content (Use-cases, Workbooks)
- Generate the daily, weekly and monthly reports on time and maintain timely send to customer
- Experience in network/host vulnerability analysis, intrusion analysis,
- Escalate alert to L3 when appropriate and as indicated by SOP
- Provide shift hand over reports as per defined template.
- Ensure confidentiality and protection of sensitive data.
- Educating and mentoring the L1 team.
- Good to have Troubleshooting and Fine Tune SIEM platform.
- Participate in creation of a customer onboarding plan
- Participate in Connecting data sources to Sentinel and validating them with customers

**Profile requirements**:

- 3+ Years of related experience in cybersecurity and SOC.
- Strong hands-on experience in implementing MITRE framework & TTPs.
- Knowledge of various operating system flavours including but not limited to Windows, Linux, Unix
- Strong working knowledge of common security tools, such as a SIEM, AV, scanners, proxies, WAF, NetFlow, IDS or forensics tools
- Strong knowledge of malware families and network attack vectors
- Excellent communication and presentation skills.
- Relevant security related certifications would be an advantage
- Good oral and written communication
- Very good analytical skills and listening skill

**What we **offer**:
Insurance - Group Medical Coverage, Group Personal Accident, Group Term Life Insurance

Rewards and Recognition Program, Employee Referral Program, Wellness Program and CSR Initiatives

Maternity and Paternity Leaves

Company Sponsored Certification Program

Learning/Development Courses, Cross Skill, Mentorship and Leadership Programs

Quarterly Performance Feedback Sessions

Savings, Investments and Retirement Benefits

Flexible Work Hours, Work from Home, Remote Working, Hybrid Working

Company Onsite / Fun Events