L3 SOC Analyst
1 month ago
Position Description:
The Level 3 (L3) SOC Analyst is a core resource on the Security Monitoring team (Blue Team) which operates within
CGI’s Global Security Operations Center (GSOC).
As a member of the Security Monitoring team, the L3 Analyst is responsible for the monitoring, triage and response
of all security alerts coming from SIEM and the security controls directly.
The L3 Analyst will have a broad range of cybersecurity experience and skillsets including knowledge of Windows
and Linux operating systems, knowledge of common threats and attack methodologies, an awareness of industry
standards, and foundational endpoint and network-based analysis techniques.
Your future duties and responsibilities:
Continue the investigation of alerts that have been escalated by L2 Analysts within agreed upon SLA's.
Perform triage of indicators, as needed, and document all findings in the appropriate threat knowledgebase.
Perform In-depth analysis of alerts, outside of Standard Operating Procedures, utilizing intermediate endpoint
and network-based analysis techniques.
Make technical and procedural enhancement recommendations in coordination with other members of the team
to improve the overall capabilities and maturity of the SOC.
Create security incidents from presumed true-positive alerts; and close presumed false-positive alerts.
Support Incident Management (IM) when further investigation is required.
Be a subject matter expert of industry trends, new threats, technologies and common security standards and
frameworks.
Engage and collaborate with other members of the GSOC, as well as internal CGI teams, during the investigation
of alerts.
Report security vulnerabilities identified during BAU activities and provide recommendations to mitigate the
overall security risk to the organization.
Create, review, and enhance Standard Operating Procedure (SOP) documentation.
Utilize and contribute to internal threat intelligence.
Perform handover of priority items at the end of shift.
Review alert queues to identify patterns that may indicate broader security issues by taking a "long-term" view of event analysis (weeks and months)
KEY SKILLS & COMPETENCIES
Ability to communicate clearly and effectively in both verbal and written form.
Ability to think critically when investigating alerts to determine appropriate relevance of the alert details.
Ability to methodically research unknown information; including being able to search for information, take notes, and manage time.
Skilled in time management to ensure that all assigned tasks are completed within requested timeframes.
Knowledge of various networking concepts and the ability to utilize that knowledge during an investigation.
Common concepts include IP Address subnets, Network Address Translation (NAT), and the knowledge of
different protocols and ports.
Knowledge of Windows system administration and Event ID's, including knowing the event ID of common events such as logins, login failures, and process creations.
Knowledge of the Linux operating system including common log storage paths, and common Linux commands.
Knowledge of vulnerability management concepts, as well as Common Vulnerabilities and Exposures (CVE).
Ability to analyze log files utilizing advanced tools and techniques.
Knowledge of network security monitoring techniques.
Advanced knowledge of common threats and vulnerabilities, attack methodologies, threat actors, and attack tools.
Awareness of industry standards and frameworks.
Knowledge of IT Service Management (ITSM) with a focus on Incident Management.
Knowledge of foundational open-source intelligence techniques.
Knowledge of any scripting or programming language.
Knowledge of intermediate or advanced threat hunting techniques.
Experience with mentoring more junior analysts.
Knowledge of malware analysis techniques is an asset.
Knowledge of reverse engineering techniques is an asset.
Required qualifications to be successful in this role:
2+ year degree of diploma with a focus on Information Security or Cybersecurity is an asset, but not required.
Advanced Certifications in Information Security or Cybersecurity related disciplines (e.g., CISSP, CCSP, GSEC,
GSOC, GCIA, GMON, GCDA, GCIH, GCFA, GREM, GNFA).
EXPERIENCE
At least, 3 years of experience working in a Security Operations Center as a SOC Analyst, or similar role.
Experience handling alerts from SIEM and common security controls including Network and Host-based IPS and IDS, Endpoint Security, Firewall, and Cloud security.
Experience using use third-party security intelligence tools, such as Virus Total, to safely triage indicators.
Experience performing alert investigation utilizing advanced digital forensics techniques.
Experience supporting or performing incident response activities.
· Experience producing security reports.
Skills:
Cyber-
Manager - SOC Senior Analyst (SOC L3)
2 days ago
Bengaluru, India Genpact Full timeWith a startup spirit and 115,000 + curious and courageous minds, we have the expertise to go deep with the world’s biggest brands—and we have fun doing it! We dream in digital, dare in reality, and reinvent the ways companies work to make an impact far bigger than just our bottom line. We’re harnessing the power of technology and humanity to create...
-
SOC L3
4 weeks ago
Bengaluru, Karnataka, India True Talents Consulting Pvt Ltd Full time**Want to be a part of our team?** Provides technical support to field engineers, technicians, and product support personnel who are diagnosing, troubleshooting, repairing, and debugging complex electro/mechanical equipment, computer systems, complex software, or networked and/or wireless systems. Responds to situations where first-line product support has...
-
Sr Analyst
4 weeks ago
Bengaluru, India Tyson Foods India Full timeExperience - Min of 6 - 10+yrs of relevant experience in SOC / IRSkills RequiredShould have worked in SOC L3 and L2 teams in prior experienceMust have handled various SIEM and SOAR Tools.Analyzing logs to identify patterns, trends, or other meaningful insights in order to make recommendations for improvementMust have experience handling SNOW ticketing...
-
▷ Only 24h Left: SOC L3
4 days ago
Bengaluru, India LTIMindtree Full timeSkills : SOC L3Experience : 05 - 08 yrsLocation : Bangalore/ MumbaiJob Description:1. A senior SOC analyst would work closely with the SOC team and be responsible for incident detection, triage, analysis, and response.2. Hands-on experience with configurations and management of SIEM tools (Qradar (preferred), Azure Sentinel, and Splunk), including log source...
-
Sr Analyst
4 weeks ago
Greater Bengaluru Area, India Tyson Foods India Full timeExperience - Min of 6 - 10+yrs of relevant experience in SOC / IRSkills RequiredShould have worked in SOC L3 and L2 teams in prior experienceMust have handled various SIEM and SOAR Tools.Analyzing logs to identify patterns, trends, or other meaningful insights in order to make recommendations for improvementMust have experience handling SNOW ticketing...
-
Sr Analyst
4 weeks ago
Greater Bengaluru Area, India Tyson Foods India Full timeExperience - Min of 6 - 10+yrs of relevant experience in SOC / IR Skills Required Should have worked in SOC L3 and L2 teams in prior experience Must have handled various SIEM and SOAR Tools. Analyzing logs to identify patterns, trends, or other meaningful insights in order to make recommendations for improvement Must have experience handling SNOW ticketing...
-
L3 SOC Manager
1 month ago
Bengaluru, India VIDPRO CONSULTANCY SERVICES Full timeAbout the job:We are looking for a highly experienced information security professional to help leading one of the clusters of Synergistic Security Operation Center to monitor security alerts, respond and remediate detected issues, and work with the Incident Management process to remove threats and vulnerabilities within the organization and to assist the...
-
SOC Security Analyst
18 hours ago
Bengaluru, India NetApp Full timeTitle: SOC Security Analyst Location: Bangalore, Karnataka, IN, 560071 Requisition ID: 124437 About NetApp We’re forward-thinking technology people with heart. We make our own rules, drive our own opportunities, and try to approach every challenge with fresh eyes. Of course, we can’t do it alone. We know when to ask for help, collaborate with others,...
-
Senior Manager
2 days ago
Bengaluru, India Genpact Full timeWith a startup spirit and 115,000 + curious and courageous minds, we have the expertise to go deep with the world’s biggest brands—and we have fun doing it! We dream in digital, dare in reality, and reinvent the ways companies work to make an impact far bigger than just our bottom line. We’re harnessing the power of technology and humanity to create...
-
SOC L2
4 weeks ago
Bengaluru, India Phygital Insights Full timeFull time- Department: - Cyber Security- Listed on Dec 04, 2023 SOC Analyst L2 is responsible for a broad range of responsibilities with a primary emphasis on Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents. - The SOC Senior Analyst position is responsible for in-depth...
-
SOC Analyst L1/L2
4 weeks ago
Bengaluru, India Qtek Systems Full timeDescription:POSITION SUMMARY:SOC Analyst ( L1/L2 – 2 to 6 years)The SOC Analyst is responsible for a broad range of responsibilities with a primary emphasis on 24/7, Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents.ESSENTIAL DUTIES AND RESPONSIBILITIESExperience in one or more...
-
Azure Sentinel Sme 9 to 12 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeProvide superior technical security expertise(L2/L3/L4) to ensure that the Security Operations Centre SOC is always delivering a professional service to its customers- - Conduct detailed analytical queries and investigations identify areas that require specific attention identify indicators of compromise IOC or events of interest EOI that need further...
-
Senior SOC analyst L2 support
1 month ago
Bengaluru, India Netlabs Global IT Services Pvt Ltd Full timeJob Responsibilities: Perform monitoring, identification, investigation, documentation, resolution, and reporting of security alerts through prioritization of events based on risk/exposure. Analyze Endpoint Detection and Response (EDR), Network, Cloud and other traffic and log data for potential threats or vulnerabilities. Generating tickets and incident...
-
Senior SOC analyst L2 support
1 month ago
Bengaluru, India Netlabs Global IT Services Pvt Ltd Full timeJob Responsibilities: Perform monitoring, identification, investigation, documentation, resolution, and reporting of security alerts through prioritization of events based on risk/exposure. Analyze Endpoint Detection and Response (EDR), Network, Cloud and other traffic and log data for potential threats or vulnerabilities. Generating tickets and incident...
-
SOC Analyst L1/L2
1 month ago
Bengaluru, India Qtek Systems Full timeDescription : POSITION SUMMARY: SOC Analyst ( L1/L2 – 2 to 6 years) The SOC Analyst is responsible for a broad range of responsibilities with a primary emphasis on 24/7, Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents. ESSENTIAL DUTIES AND RESPONSIBILITIES ...
-
SOC L2
1 month ago
Bengaluru, India Alignity Solutions Full timeDo you love a career where you Experience, Grow & Contribute at the same time, while earning at least 10% above the market? If so, we are excited to have bumped onto you. Learn how we are redefining the meaning of work, and be a part of the team raved by Clients, Job-seekers and Employees. Jobseeker Video Testimonials Employee Glassdoor Reviews If you...
-
Embedded Engineer
1 month ago
Bengaluru, India Cientra Techsolutions Full timeJob Description :- Systems/ Platform Integration/ Firmware Development Engineer- 5 to 8 years of development work experience in networking, security & wireless software solutions for embedded systems. - Design, develop and test high-performance network and wireless solutions on a various SoCs on OpenWRT platforms.Areas of expertize :- Linux Kernel,...
-
Azure Sentinel 9 to 12 Years Pan India
1 month ago
Bengaluru, India Capgemini Full timeProvide superior technical security expertise to ensure that the Security Operations Centre SOC is always delivering a professional service to its customers - Conduct detailed analytical queries and investigations identify areas that require specific attention identify indicators of compromise IOC or events of interest EOI that need further investigation and...
-
Cyber security Senior Analyst
2 weeks ago
Bengaluru, India Société Générale Assurances Full timeCyber security Senior Analyst ( SOC Cyber defence )Permanent contract|Bangalore|Innovation / Project / OrganizationCyber security Senior Analyst ( SOC Cyber defence )Bangalore, IndiaPermanent contractInnovation / Project / OrganizationResponsibilitiesRESG/GTS is the entity in charge of the entire IT infrastructure of Société Générale.The RESG/GTS/SEC...
-
Cyber security Senior Analyst
3 weeks ago
Bengaluru, India Société Générale Assurances Full timeCyber security Senior Analyst ( SOC Cyber defense ) - L2Permanent contract|Bangalore|Innovation / Project / OrganizationCyber security Senior Analyst ( SOC Cyber defense ) - L2Bangalore, IndiaPermanent contractInnovation / Project / OrganizationResponsibilitiesRESG/GTS is the entity in charge of the entire IT infrastructure of Société Générale.The...
