Job Description

_VOIS Intro About _VOIS: _VO IS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value and enhancing quality and efficiency across 28 countries, and operating from 7 locations: Albania, Egypt, Hungary, India, Romania, Spain and the UK. Over 29,000 highly skilled individuals are dedicated to being Vodafone Group\'s partner of choice for talent, technology, and transformation. We deliver the best services across IT, Business Intelligence Services, Customer Operations, Business Operations, HR, Finance, Supply Chain, HR Operations, and many more. Established in 2006, _VO IS has evolved into a global, multi-functional organisation, a Centre of Excellence for Intelligent Solutions focused on adding value and delivering business outcomes for Vodafone _VOIS Centre Intro About _VOIS India: In 2009, _VO IS started operating in India and now has established global delivery centres in Pune, Bangalore and Ahmedabad. With more than 14,500 employees, _VO IS India supports global markets and group functions of Vodafone, and delivers best-in-class customer experience through multi-functional services in the areas of Information Technology, Networks, Business Intelligence and Analytics, Digital Business Solutions (Robotics & AI), Commercial Operations (Consumer & Business), Intelligent Operations, Finance Operations, Supply Chain Operations and HR Operations and more. Key accountabilities and decision ownership Investigate, Analyse and triage the alerts. Do detailed analysis for incidents Prepare Ops reports and do quality assessments on the cases created. Responsible to drive the daily-stand up calls and clarify process and technical doubts of CDA and peers Ability to write good technical summary of the incidents Ability to navigate through organizational teams and complexity to accomplish the delivery of investigation results on time Build a knowledgebase by writing KB/playbooks / run books / process and procedure documents/ articles. Proactively work on fine-tuning and effort reduction ideas. Protect digital files and information systems against unauthorized access, modification or destruction Maintain data and monitor security access Analyze security breaches to determine their root cause Recommend and install appropriate tools and countermeasures Continuously work to stabilize the process. Sync up with Local Market CSIRT Teams for on-going Cases and ensure to reduce the case backlog Documents SOP, KEDB, processes and procedures. Conduct brown bag sessions for the team members. Executes security assessments on the alerts to highlight and clearly articulate risk to the business. Participates in the scope definition of alerting and detection capability improvement projects Acts as primary technical subject matter expert for alerting playbooks and triage playbooks and ensure you to keep it updated Accountable for the overall triaging and quality of alert analysis and deliverables within CSOC CDA team. Proactively discovers volumetric alerts in Vodafone environments and ensure mitigation/alert reduction efforts are actions are implemented Continuously develops new triage play books and processes Performs detailed assessment on the alerts volume and identify new scope for improvement in terms of people, process and technology. Acts as primary technical subject matter expert. Creates detailed technical reports about new threats and alerts - hands findings over to resolver teams like content creation teams , Threat intelligence team and Incident management team Core competencies, knowledge and experience 5+ years SOC experience as Senior analyst with expertise in SIEM, detailed analysis of security events and incidents. Should have good knowledge on Security Incident investigation and management. Incident response. Industry recognized security certifications like SANS certification would be an added advantage. Good understanding of Malware analysis, behaviour of malwares and sophisticated APT threats Should have an understanding about network and security concepts, SIEM technologies (Preferably - Arcsight , or Splunk / Qradar, Log rhythm, etc.) Should be a good team player and ability to drive and motivate CDA to do in-depth analysis Should be able to mentor and train guide new joiners in the team. Should have good understanding about SIEM correlation rules and logic creation skills. Should be able to create playbooks and work flows for new processes Aspire to learn about new threats in Cyber Security. Industry recognized security certifications like CCNA Cyber Ops,, Security + is good to have Must have technical / professional qualifications Degree in Computer Science/ Information Technology/ Engineering or similar Prior experience on cloud technologies Prior experience in Information Security Domain.. Good knowledge in Networking and security concepts Experience of global customer handling A reputation for self-motivation, integrity, cultural sensitivity and strong interpersonal skills

foundit