Job Description

About _VOIS:_VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value and enhancing quality and efficiency across 28 countries, and operating from 7 locations: Albania, Egypt, Hungary, India, Romania, Spain and the UK.Over 29,000 highly skilled individuals are dedicated to being Vodafone Group\'s partner of choice for talent, technology, and transformation. We deliver the best services across IT, Business Intelligence Services, Customer Operations, Business Operations, HR, Finance, Supply Chain, HR Operations, and many more.Established in 2006, _VOIS has evolved into a global, multi-functional organisation, a Centre of Excellence for Intelligent Solutions focused on adding value and delivering business outcomes for Vodafone.About _VOIS India:In 2009, _VOIS started operating in India and now has established global delivery centres in Pune, Bangalore and Ahmedabad. With more than 14,500 employees, _VOIS India supports global markets and group functions of Vodafone, and delivers best-in-class customer experience through multi-functional services in the areas of Information Technology, Networks, Business Intelligence and Analytics, Digital Business Solutions (Robotics & AI), Commercial Operations (Consumer & Business), Intelligent Operations, Finance Operations, Supply Chain Operations and HR Operations and more.What\'s in it for youJob Roles & Responsibilities:

• Minimum of 10 years\' experience in SIEM content (rule logic and code) development role
• Minimum of 10 years of SOC analyst experience (Level2 or above) required
• 14 years IT experience
• In depth and extensive hands-on experience in security event analysis, create and refine SIEM/EDR

rules and deliver efficiency within the SIEM and all other technologies used within the team

• Deep knowledge of IPv4/IPv6, TCP networking protocols
• Deep knowledge of Windows/Linux operating systems
• Good working knowledge of security technologies such as SIEM (Elastic Security - preferred, ArcSight,

Microsoft Sentinel, Splunk), EDR (Microsoft 365 Defender, FireEye, Tanium), IDS/IPS, firewalls,
proxies, web application firewalls, anti-virus, etc.

• Understanding of Window Security Event logs and Syslog
• Excellent familiarity with endpoint/perimeter security attack vectors and detection (blue/purple

teaming)

• Familiarity with standard security frameworks such as MITRE, cyber kill chain and APT campaign

strategies

• Good knowledge of cloud platforms such as GCP, Azure, O365, AWS
• Experience and working knowledge of GitLab, CICD, Ansible, Kubernetes

C2 General

• Good working knowledge of regular expression development
• Scripting and programming experience is highly desirable (Python)
• Kusto or SQL knowledge, including rule/query optimization
• Proven ability to prioritize workload, meet deadlines and utilize time effectively
• Good interpersonal and communication skills, works effectively as a team player and the ability
• to communicate technical information to a non-technical audience

Must have technical/professional qualifications:

• Bachelor\'s degree or higher in Cyber Security/Information Technology or related field
• One or more cyber security certifications such as GCIA, GCIH, GCFA, GNFA, CEH, ECSA preferred

Key accountabilities and decision ownership:

• Content Development - take part in and drive continual creation and refinement of rules and logic

within the Vodafone SIEM/EDR/Analytics infrastructure to improve Cyber Security Operations
efficiency and effectiveness. This would include responsibilities such as the following:

• Collaborating with data owners and customers to understand data sources and use cases and

successfully translate requirements to actionable content

• Develop SIEM/EDR content to address attack vectors using current industry SIEM best practices
• Analyse threats/adversaries/attack tools to develop indicator/behavioural based detections that alert and/or prevent \xe2\x80\xa2 Evaluate and make use of multiple data sources to build content across multiple SIEM/EDR platforms
• Utilize SIEM/EDR to facilitate metrics collection, analysis and reporting
• Create and maintain SIEM documentation
• Effectively collaborate with colleagues and counterparts internally and externally
• SOC Playbook
• Understanding of Window Security Event logs and Syslog

_VOIS Equal Opportunity Employer CommitmentIndia:_VOIS is proud to be an Equal Employment Opportunity Employer. We celebrate differences and we welcome and value diverse people and insights. We believe that being authentically human and inclusive powers our employees\' growth and enables them to create a positive impact on themselves and society. We do not discriminate based on age, colour, gender (including pregnancy, childbirth, or related medical conditions), gender identity, gender expression, national origin, race, religion, sexual orientation, status as an individual with a disability, or other applicable legally protected characteristics.As a result of living and breathing our commitment, our employees have helped us get certified as a Great Place to Work in India for four years running. We have been also highlighted among the Top 5 Best Workplaces for Diversity, Equity, and Inclusion, Top 10 Best Workplaces for Women, Top 25 Best Workplaces in IT & IT-BPM and 14th Overall Best Workplaces in India by the Great Place to Work Institute in 2023. These achievements position us among a select group of trustworthy and high-performing companies which put their employees at the heart of everything they do.By joining us, you are part of our commitment. We look forward to welcoming you into our family which represents a variety of cultures, backgrounds, perspectives, and skills!Apply now, and we\'ll be in touch!Vodafone is committed to attracting, developing and retaining the very best people by offering a motivating and inclusive workplace in which talent is truly recognised and rewarded. We are committed to promoting Inclusion for All with the belief that diversity plays an important role in the success of our business. We actively encourage everyone to consider becoming a part of our journey.

Vodafone