Senior SOC Analyst
5 months ago
Senior SOC Analyst (Level 3) Bangalore/Gurgaon, India
AXA XL has an exciting opportunity for an experienced L3 Senior SOC analyst to join the Security Operations team, supporting security incident investigations across the organisation’s global infrastructure and responding to escalations from the Level 1 and 2 SOC teams. The successful candidate will have a history of successfully managing complex and high-severity cyber security incidents.
DISCOVER your opportunity
What will your essential responsibilities include?
·Take full ownership of incidents escalated by Level 2 analysts.
·Conduct complex investigations and provide advice to L2 SOC analysts.
·Develop customized scripts and procedures to automate repetitive tasks and improve the efficiency of incident response activities.
·Provide expert advice on incident remediation and recovery efforts.
·Develop threat remediation strategies.
·Perform proactive analysis of AXA XL’s attack surface and advice on potential threats and attack vectors.
·Review and provide feedback on security control capability gaps based on security intrusion trends.
·Create and refine runbooks/playbooks for all alerts.
·On-board log sources and work on log issues.
·Fine-tune EDR and other tooling to exclude noise and false positives.
·Create and fine-tune content in SIEM - correlation rules, Dashboard and Reports.
·Interact with SIEM, EDR and other SOC tooling vendors (TAC Support) to remediate any issues with tooling.
·Monitor API threat detection, reporting and containments.
·Demonstrate experience in conducting digital forensics investigations relating to incident detection and response.
·Responsible for making decisions and identifying required actions. During high-severity security incidents, you will advise the AXA XL Head of SOC, CISO and CSO on appropriate containment, eradication, and remediation measures.
·Provide an after-hours point of escalation for critical incidents.
·Define the operational roadmap and key metrics for incident detection and response.
·Collaborate with internal stakeholders to align on and implement security incident detection and response processes.
·Develop SOC security incident policies and investigation procedures, for use across multiple information systems and teams.
·Conduct compliance monitoring and perform SOC/SIEM security control testing.
·Analyze, define, and manage the delivery of new SIEM rules.
·Conduct use case testing and modify or create as and when required.
·Create new custom detection rules using KQL.
·Design and implement SIEM and EDR enhancements and configurations.
·Manage and represent the Security Operations team on ethical hack exercises.
You will report to the Head of SOC.
SHARE your talent We are looking for someone who has these abilities and skills:
Required Skills and Abilities:
·Good knowledge of Microsoft Defender and Microsoft Sentinel, including developing complex KQL queries.
·Experience in performing digital forensics investigations.
·Experience in developing scripts (Python, Powershell, etc.) quickly in reaction to incidents.
·Demonstrate experience of good knowledge in information security principles applied to architecture, networks & systems, digital forensics, security risk assessments and software development).
·Good knowledge and understanding of technologies utilized in cyber security (SIEM, SOAR, Firewalls, IAM, IDS/IPS, Anti-malware, End Point Protection, Database Security, Threat management/intelligence).
·Actionable knowledge of MITRE ATT&CK framework.
·Effective knowledge of exploitable vulnerabilities and remediation techniques.
·Experience in automating manual processes for responding to security incidents.
·Experience in threat intelligence and CERT/CSIRT activities.
·Knowledge of current threat actor techniques.
·Understanding of threat landscapes and threat modelling, security threat and vulnerability management, and security monitoring.
·Awareness of tools and techniques used by attackers to enter corporate networks, including common IT system flaws and vulnerabilities.
Desired Skills and Abilities:
·Excellent troubleshooting and critical thinking skills.
·Experience in SOC documentation development.
·Demonstrated experience in communicating complex security concepts, both verbally and in writing, to a variety of audiences.
·Must take ownership of tasks and demonstrate a high degree of autonomy to ensure completion.
·Must be personable and foster good stakeholder and peer group working relationships.
·Certifications such as CISSP, GIAC, CEH or other.
FIND your future
AXA XL, the P&C and speciality risk division of AXA, is known for solving complex risks. For mid-sized companies, multinationals and even some inspirational individuals we don’t just provide re/insurance, we reinvent it.
How? By combining a comprehensive and efficient capital platform, data-driven insights, leading technology, and the best talent in an agile and inclusive workspace, empowered to deliver top client service across all our lines of business − property, casualty, professional, financial lines, and speciality.
With an innovative and flexible approach to risk solutions, we partner with those who move the world forward.
Inclusion & Diversity
-
Senior SOC Analyst
3 months ago
Bengaluru, India Resillion Full timeJob DescriptionSenior SOC Analyst Experience Range: 4 -6 Years Location: BangaloreKey responsibilitiesOperate within a fast-paced 24x7 SOC environment, either as part of a team or independently, to Analyse alerts and log data promptly and effectively. Assess the severity and impact of potential threats to accurately prioritize alerts and incidents.Monitor...
-
SOC Manager
2 months ago
Bengaluru, India NeST Digital Full timeJob DescriptionJob Location: Tokyo,Japan15 + years of experience.Requires N2 & above strong Japanese language skills. With N3 having good conversation skills can be consideredExperience with SIEM tools (e.g., Splunk, IBM QRadar, ArcSight,Splunk,Cyberreason), EDR solutions (e.g., CrowdStrike, Carbon Black), and other SOC technologies.Proficiency in log...
-
SOC Securonix Analyst
4 weeks ago
Bengaluru, India Tata Consultancy Services Full timeRole : SOC Securonix AnalystExperience : 4 - 10 yearsLocation : BangaloreMust Have :- Experience in SIEM tool implementation, processes definition, Use Case creation.- Hands on experience in Security Operations, SOC, SIEM, Incident Response, Automation, Cloud.- Hands-on experience working in a product integration environment. Knowledge of REST API best...
-
Soc securonix analyst
4 weeks ago
Bengaluru, India Tata Consultancy Services Full timeRole : SOC Securonix AnalystExperience : 4 - 10 yearsLocation : BangaloreMust Have :- Experience in SIEM tool implementation, processes definition, Use Case creation.- Hands on experience in Security Operations, SOC, SIEM, Incident Response, Automation, Cloud.- Hands-on experience working in a product integration environment. Knowledge of REST API best...
-
SOC Manager
2 months ago
Bengaluru, India NeST Digital Full timeJob Description Job Location: Tokyo,Japan15 + years of experience.Requires N2 & above strong Japanese language skills. With N3 having good conversation skills can be consideredExperience with SIEM tools (e.g., Splunk, IBM QRadar, ArcSight,Splunk,Cyberreason), EDR solutions (e.g., CrowdStrike, Carbon Black), and other SOC technologies.Proficiency in log...
-
SOC Manager
2 months ago
Bengaluru, India NeST Digital Full timeJob Description Job Location: Tokyo,Japan15 + years of experience.Requires N2 & above strong Japanese language skills. With N3 having good conversation skills can be consideredExperience with SIEM tools (e.g., Splunk, IBM QRadar, ArcSight,Splunk,Cyberreason), EDR solutions (e.g., CrowdStrike, Carbon Black), and other SOC technologies.Proficiency in log...
-
SOC Manager
2 months ago
Bengaluru, India NeST Digital Full timeJob Description Job Location: Tokyo,Japan 15 + years of experience. Requires N2 & above strong Japanese language skills. With N3 having good conversation skills can be considered Experience with SIEM tools (e.g., Splunk, IBM QRadar, ArcSight,Splunk,Cyberreason), EDR solutions (e.g., CrowdStrike, Carbon Black), and other SOC technologies. Proficiency in log...
-
Bilingual SOC Manager
1 month ago
Bengaluru, India NeST Digital Full timeJob DescriptionJob Location: Tokyo,Japan- 15 + years of experience.- Requires N2 & above strong Japanese language skills. With N3 having good conversation skills can be considered- Experience with SIEM tools (e.g., Splunk, IBM QRadar, ArcSight,Splunk,Cyberreason), EDR solutions (e.g., CrowdStrike, Carbon Black), and other SOC technologies.- Proficiency in...
-
Senior Cybersecurity Analyst
4 weeks ago
Bengaluru, Karnataka, India Insight Global Full time**Job Description for Senior Cybersecurity Analyst**Insight Global is seeking a seasoned Senior Cybersecurity Analyst to join our team. This role is for a Senior SOC Analyst to support our major retail apparel clients based out of North America.This is a long-term contract role with potential for full-time conversion. The working hours would be 9AM-5PM IST....
-
SOC Securonix Analyst
4 weeks ago
Bengaluru, India Tata Consultancy Services Full timeRole : SOC Securonix AnalystExperience : 4 - 10 yearsLocation : BangaloreMust Have : Experience in SIEM tool implementation, processes definition, Use Case creation.Hands on experience in Security Operations, SOC, SIEM, Incident Response, Automation, Cloud.Hands-on experience working in a product integration environment. Knowledge of REST API best practices...
-
SOC Securonix Analyst
4 weeks ago
Bengaluru, India Tata Consultancy Services Full timeRole : SOC Securonix Analyst Experience : 4 - 10 years Location : Bangalore Must Have : Experience in SIEM tool implementation, processes definition, Use Case creation. Hands on experience in Security Operations, SOC, SIEM, Incident Response, Automation, Cloud. Hands-on experience working in a product integration environment. Knowledge of REST API best...
-
L2 SOC Analyst
1 month ago
Bengaluru, India HARMAN India Full timeJob DescriptionJob Overview – L2 SOC Analyst positionJob DescriptionResponsibilities for this role include, but are not limited to:5-8-years’ experience in SOC Tier 2Job Profile Summary:In this position using various cybersecurity systems (EDR, SIEM, Firewall, IDS, IPS, SOAR, Access Management, Vulnerability management, etc.) you will monitor and analyze...
-
L3 SOC Analyst
1 month ago
Bengaluru, India AlifCloud IT Consulting Pvt. Ltd. Full timeJob Title: Security Operations Centre (SOC) Analyst - WFHWork type- Remote/HybridJob Type: Full-timeDepartment: Information SecurityReports To: SOC ManagerSIEM Tools- Splunk, Azure SentinelEDR- DefenderCandidate Preferred Location: Pune IndiaAbout Alif Cloud IT Consulting: Alif Cloud IT Consulting is a leading provider of Microsoft Services Globally, Working...
-
L2 soc analyst
4 weeks ago
Bengaluru, India HARMAN India Full timeJob DescriptionJob Overview – L2 SOC Analyst positionJob DescriptionResponsibilities for this role include, but are not limited to:5-8-years’ experience in SOC Tier 2Job Profile Summary:In this position using various cybersecurity systems (EDR, SIEM, Firewall, IDS, IPS, SOAR, Access Management, Vulnerability management, etc.) you will monitor and analyze...
-
L2 soc analyst
1 month ago
Bengaluru, India HARMAN India Full timeJob DescriptionJob Overview – L2 SOC Analyst positionJob DescriptionResponsibilities for this role include, but are not limited to:5-8-years’ experience in SOC Tier 2Job Profile Summary:In this position using various cybersecurity systems (EDR, SIEM, Firewall, IDS, IPS, SOAR, Access Management, Vulnerability management, etc.) you will monitor and analyze...
-
SOC Analyst L1/L2
6 months ago
Bengaluru, India Qtek Systems Full timeDescription : POSITION SUMMARY: SOC Analyst ( L1/L2 – 2 to 6 years) The SOC Analyst is responsible for a broad range of responsibilities with a primary emphasis on 24/7, Log analysis, threat and event monitoring and data loss prevention to contribute to effective remediation of security incidents. ESSENTIAL DUTIES AND RESPONSIBILITIES ...
-
Senior SOC Engineer
2 months ago
Bengaluru, India IN19 Alcon Laboratories (India) Pvt Ltd Company Full timeSummary of Position: The Alcon Security Operations Center (SOC) is responsible for monitoring, detecting, analyzing, and performing incident response to cyber threats against Alcon applications, platforms, networks, and information. The environment includes local area networks/wide area networks (LAN/WAN), Internet connections, public facing services &...
-
Senior SoC Verification Specialist
2 days ago
Bengaluru, Karnataka, India GAMIFi Consulting Services (P) Ltd Full timeJob OverviewGAMIFi Consulting Services (P) Ltd is seeking a highly skilled Senior SoC Verification Specialist to join our team. This role involves leading the verification of complex System-on-Chip (SoC) designs, focusing on CPU subsystems and overall SoC integration.
-
L3 SOC Analyst
1 month ago
Bengaluru, India AlifCloud IT Consulting Pvt. Ltd. Full timeJob Title: Security Operations Centre (SOC) Analyst - WFHWork type- Remote/HybridJob Type: Full-timeDepartment: Information SecurityReports To: SOC ManagerSIEM Tools- Splunk, Azure SentinelEDR- DefenderCandidate Preferred Location: Pune IndiaAbout Alif Cloud IT Consulting: Alif Cloud IT Consulting is a leading provider of Microsoft Services Globally, Working...
-
SOC L3
5 months ago
Bengaluru, Karnataka, India DXC Technology Full timeSOC Senior Analyst with very good experience on carrying out in-depth analysis and investigation of a security alert / incident, able to create run book and playbook, work on creation of new analytics as per requirement of client environment. CSOC / SIEM detection development and thereat hunting Develop threat/attack models to depict and model detection of...
