Manager - SOC Admin & Platform Engineer

2 months ago

Pune, India Genpact Full time

Genpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose – the relentless pursuit of a world that works better for people – we serve and transform leading enterprises, including the Fortune Global 500, with our deep business and industry knowledge, digital operations services, and expertise in data, technology, and AI.
Inviting applications for the role of Manager-SOC Admin & Platform Engineer
Genpact is seeking invitations for SOC Admin & Engineering role to support implementation, integration & management of SIEM, SOAR, EDR & other technologies within its environment. The SOC Admin is an internal corporate role responsible for administration, management, configuration, testing and integration of SIEM, SOAR, EDR & other security platform solutions to improve the security value of the organization. A working knowledge of SIEM & other security solutions with relevant experience is required. Should have deeper understanding with some hands-on experience on other enterprise IT infra components such as advanced firewalls, IPS/IDS/WIPS/HIPS, routers/switches, TACACS, VPN, proxy, AV, domain controllers, DNS, DHCP, multi factor authentication, virtualization, Email systems/security, DLP etc. along with cloud environments (AWS, Azure etc.).

Responsibilities 
• Align with internal & external needs, threat trends, and operational performance to identify opportunities for improvement/enhancement of the security operations center technologies and integrations.
• Perform system administration for SIEM, SOAR, EDR and ancillary devices.
• Develop, implement, and execute standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of the SIEM/SOAR platforms.
• Develop information security and incident response workflows, procedures and best practices and publish them as playbooks in SOAR platform.
• On-board new log sources with log analysis and parsing to enable SIEM correlation.
• Creates and develops correlation and detection rules within SIEM solution (IBM QRadar), reports and dashboards to detect emerging threats.
• Manage, develop, and tune the scripts that integrate SIEM.
• Collaborate with key stakeholders within technology, application, and cyber-Security to develop specific use cases to address specific business needs.
• Collaborate with platform & application owners to define and establish logging standards to address various governance & security requirements.
• Create technical documentation around the content deployed to the SIEM.
• Provides technical support for forensics services to include evidence seizure, computer forensic analysis and data recovery, in support of computer crime investigation. Researches and maintains proficiency in open and closed source computer exploitation tools, attack techniques, procedures, and trends. 
• Performs research into emerging threat sources and develops threat profiles. Keep updated on latest cyber security threats.
• Demonstrates strong evidence of analytical ability. Has a broad understanding of all stages of incident response.
• Has a sound understanding of other technologies like PAM, CASB, EDR, Email Security, Secure Web gateway etc. and other threat detection platforms that form part of the broader SOC program.
• Creation of reports, dashboards, metrics for SOC administration KPIs and presentation to senior management & other stakeholders.
• Handling audit related activities with internal and external stakeholders to ensure compliance of policies, adherence of procedures, showcase evidence, and align the observation reports for process improvisations to achieve operational objectives. 
• Be prepared to provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a re-occurrence.
• Has a systematic, disciplined, and analytical approach to problem solving with leadership skills.
• Has basic knowledge of audit requirements (PCI, HIPPA, SOX, ISMS etc.)
Qualifications we seek in you
Minimum qualifications / Experience Requirements 
• Relevant years working within the information security field, with emphasis on security platform implementation & administration.
• Bachelors (Graduation) or higher in Computer Science or equivalent.
• Experience with QRadar (preferred) and/or other platforms SIEM systems like SPLUNK, ArcSight.
• Experience with IBM Resilient (preferred) or equivalent SOAR technology like Demisto, Splunk, Service Now.
Technical Experience & Skills Required:
• Excellent understanding and proven hands-on experience in SIEM concepts such as correlation, aggregation, normalization, and parsing.
• Experience with deploying and managing a large SIEM deployment.
• Excellent understanding of enterprise logging standards, with a focus on application logging
• Advanced knowledge of content creation concepts and best practices
• Excellent understanding of regular expressions, development of custom/flex Parsers
• Strong knowledge of frameworks such as Cyber Kill Chain and Adversary Tactics, Techniques and Procedures.
• Experience in Implementation and support of major SOAR platform (preferred – IBM Resilient) and developing playbooks for automation. 
• Expertise in writing QRadar searches, QRadar Infrastructure and content use case development, well-versed with IBM QRadar architecture and design
• Experience in QRadar & Resilient Administration and analytics development on Information Security, Triage events, Incident Analysis.
• Hands on exp with information security tools such as SIEMs, FW, IDS/IPS, EDR, Sandboxes, Vulnerability Management, etc.
• Excellent Python and Unix Shell scripting skills
• Understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies.
• Excellent understanding of Cyber Security Operations, Incident Response processes.
• Experience in using scripting languages to automate tasks and manipulate data. Programming experience is a plus.
• Experience working in a large enterprise environment and integrating solutions in a multi-vendor environment.
Preferred qualifications 
• Security Certifications Preferred (Including but not limited to the following certifications): 
• Security+, CEH, OSCP, CISSP, CISM, GIAC GCIH. 
• Preferred product specialization certifications on QRadar (SIEM), Resilient (SOAR), Crowdstrike (EDR), Mimecast (Email Security)

  • Manager - SOC Admin & Platform Engineer

    1 month ago

    pune, India Genpact Full time

    Genpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose – the relentless pursuit of a world that works better for people –...

  • Manager - SOC Admin & Platform Engineer

    4 weeks ago

    pune, India Genpact Full time

    Genpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose – the relentless pursuit of a world that works better for people –...

  • Manager - SOC Admin & Platform Engineer

    2 weeks ago

    Pune, Maharashtra, India Genpact Full time

    Genpact (NYSE:G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose – the relentless pursuit of a world that works better for people – we...

  • Security Operations Center

    2 weeks ago

    Pune, India Compucom Full time

    Job Title: Security Operations Center (SOC) Engineer IIIThe CompuCom SOC provides managed security services for Global clients and manages their security operations. The team is responsible for 24X7 telephone and remote support, specialized support for security compliance users, and works with the CompuCom clients on security issues. This role will act as a...

  • SOC Analyst

    1 month ago

    Pune, Maharashtra, India timesjobs Full time

    SOC Analyst - Information Security Pune, MaharashtraExecutive and Admin Information Security /Full-time/ HybridWith unmatched technology and category-defining innovation, Icertis pushes the boundaries of whats possible with contract lifecycle management (CLM). The AI-powered, analyst-validated Icertis Contract Intelligence (ICI) platform turns contracts from...

  • SOC Analyst

    4 weeks ago

    Pune, Maharashtra, India timesjobs Full time

    SOC Analyst - Information Security Pune, MaharashtraExecutive and Admin Information Security /Full-time/ HybridWith unmatched technology and category-defining innovation, Icertis pushes the boundaries of whats possible with contract lifecycle management (CLM). The AI-powered, analyst-validated Icertis Contract Intelligence (ICI) platform turns contracts from...

  • SOC Services

    2 weeks ago

    Pune, Maharashtra, India Zensar Technologies Full time

    Function Title: SOC Practice Lead - Experience required: 10-16 years - JD: **Essential Experience** This leader will build demand for new services around SOC and building MS Sentinel capabilities, handle a team to deliver these services, travel to client sites, meet with client leadership and IT teams, deliver presentations, facilitate workgroups and...

  • Security Operations Center

    1 week ago

    Pune, India Compucom Full time

    Job Title: Security Operations Center (SOC) Engineer IIIThe CompuCom SOC provides managed security services for Global clients and manages their security operations. The team is responsible for 24X7 telephone and remote support, specialized support for security compliance users, and works with the CompuCom clients on security issues. This role will act as a...

  • Security Operations Center

    2 weeks ago

    Pune, India Compucom Full time

    Job Title: Security Operations Center (SOC) Engineer IIIThe CompuCom SOC provides managed security services for Global clients and manages their security operations. The team is responsible for 24X7 telephone and remote support, specialized support for security compliance users, and works with the CompuCom clients on security issues. This role will act as a...

  • Security Operations Center

    2 weeks ago

    pune, India Compucom Full time

    Job Title: Security Operations Center (SOC) Engineer III The CompuCom SOC provides managed security services for Global clients and manages their security operations. The team is responsible for 24X7 telephone and remote support, specialized support for security compliance users, and works with the CompuCom clients on security issues. This role will act as...

  • System Software Engineer

    4 weeks ago

    Pune, India NVIDIA Full time

    We are seeking asenior software developer to join our effort to advance the state of the art of software performance tuning applications for GPU/SoCs. You will apply your knowledge gained of current and future NVIDIA chip architectures to improve our tools that provide meaningful feedback to application developers.As a software engineer in the Developer...

  • Security Operations Center

    7 days ago

    Pune, India Compucom Full time

    Job Title: Security Operations Center (SOC) Engineer IIIThe CompuCom SOC provides managed security services for Global clients and manages their security operations. The team is responsible for 24X7 telephone and remote support, specialized support for security compliance users, and works with the CompuCom clients on security issues. This role will act as a...

  • Power Platform Admin

    3 weeks ago

    Pune, Maharashtra, India Alfa Laval Full time

    Role - Power Platform Admin We create better everyday conditions for people. We do this by contributing to a more sustainable future through engineering innovation. We love what we do and we’re good at it. But now we want to be even better! We’re looking for an experienced and passionate Developer for our Global IT Delivery Centre in India. We are...

  • System Software Engineer

    3 months ago

    Pune, India NVIDIA Full time

    We are seeking a senior software developer to join our effort to advance the state of the art of software performance tuning applications for GPU/SoCs. You will apply your knowledge gained of current and future NVIDIA chip architectures to improve our tools that provide meaningful feedback to application developers.As a software engineer in the Developer...

  • System Software Engineer

    3 months ago

    pune, India NVIDIA Full time

    We are seeking a senior software developer to join our effort to advance the state of the art of software performance tuning applications for GPU/SoCs. You will apply your knowledge gained of current and future NVIDIA chip architectures to improve our tools that provide meaningful feedback to application developers. As a software engineer in the Developer...

  • System Software Engineer

    4 weeks ago

    pune, India NVIDIA Full time

    We are seeking a senior software developer to join our effort to advance the state of the art of software performance tuning applications for GPU/SoCs. You will apply your knowledge gained of current and future NVIDIA chip architectures to improve our tools that provide meaningful feedback to application developers. As a software engineer in the Developer...

  • System Software Engineer

    4 weeks ago

    Pune, India NVIDIA Full time

    We are seeking a senior software developer to join our effort to advance the state of the art of software performance tuning applications for GPU/SoCs. You will apply your knowledge gained of current and future NVIDIA chip architectures to improve our tools that provide meaningful feedback to application developers.As a software engineer in the Developer...

  • SOC L3- Logrhythm

    7 days ago

    Pune, Maharashtra, India Atos Full time

    **SOC L3- Logrhythm**: - Publication Date: Feb 8, 2024- Ref. No: 503208- Location: Pune, MH, IN, 411062**Role** -SOC L3-LOGRHYTHM **Job Location** -Pune **Work Experience** - 7+ years **Mode of Hire**: - Permanent **Key Skills**: **SOC Analyst** **Responsibilities / Technical skills**: Profile Requirements SOC L3 - Proposition of specific...

  • SOC L3- Logrhythm

    2 weeks ago

    Pune, Maharashtra, India Atos Full time

    SOC L3- Logrhythm: Publication Date: Feb 8, 2024 RefNo:Location: Pune, MH, IN, 411062Role -SOC L3-LOGRHYTHMJob Location -PuneWork Experience - 7+ yearsMode of Hire: PermanentKey Skills:SOC AnalystResponsibilities / Technical skills:Profile RequirementsSOC L- Proposition of specific recommendations Investigate and solves security breaches and other cyber...

  • Software Engineer

    4 weeks ago

    Pune, India Owens & Minor Full time

    SAP System Analyst (ABAP+HANA) Relevant experience on: SAP ABAP with SAP HANA BTP/CPI CAP/RAP minimum 2 end to end implementations The SAP Senior System Analyst, resource is responsible for facilitating the delivery and support of the development portion of projects/programs within specified functional area(s). Coordinates and takes the lead role for the...