Job Description

:Job Title: Lead Analyst, Cyber DefenseJob Location: Bengaluru, KarnatakaWork Arrangement: Hybrid (3 days per week in office)Shifts: Rotational shiftsAbout News CorpNews Corp is a global diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers and businesses throughout the world. The company comprises global businesses across various media, including news and information services, book publishing, digital real estate services, cable network programming in Australia, and pay-TV distribution in Australia.The Role:We are looking for a Lead Cyber Defense analyst responsible for monitoring and working on active alerts on various security tools (SIEM/XSOAR). The individual in this role is expected to have meticulous attention to detail, outstanding problem-solving skills, work comfortably under pressure, and deliver on tight deadlines.This position demands someone willing to use a network of sensors, security tools, and monitoring equipment to proactively identify, evaluate, and remediate potential cybersecurity threats. Based on an understanding of \xe2\x80\x9cnormal\xe2\x80\x9d network activity, SOC analysts use tools and processes to detect anomalous activity, providing 24/7/365 detection and response capabilities.The person can multitask, work independently, and work collaboratively with teams, some of which may be geographically distributed.Key ResponsibilitiesSecurity Operations Centre (SOC) Analysis and Monitoring:Lead the day-to-day operations of the SOC, overseeing security incident monitoring, and detection, analysis, and response activities.Develop and maintain SOC playbooks, standard operating procedures (SOPs), and response plans to ensure efficient and effective incident response.Investigate security incidents and alerts, perform root cause analysis, and provide recommendations to prevent future occurrences.Incident Response and Threat Intelligence:Stay up to date with the latest security threats, vulnerabilities, and attack vectors related to various tools and platforms.Monitor threat intelligence sources and collaborate with external partners to proactively identify and mitigate potential security risks.Lead incident response efforts during security breaches or cyber incidents, coordinating with internal teams and external stakeholders to contain and resolve incidents in a timely manner.Conduct post-incident reviews and lessons learned sessions to improve incident response processes and enhance overall security posture.Security Operations Center: Managing OperationsManage ticket queues including escalation of outstanding tickets, tickets requiring updates, and escalation of open tickets where necessaryEnsure quality standards are being met by doing ticket audits and reviewing and completing shift turnover logsDevelop and mentor staff by providing opportunity of growth through delegation, training and assignment of various projects.Manage PTO requests and other schedule issues that impact SOC operationsPoint of escalation for operations/security issuesIdentify opportunities for continuous improvement in security operationsActively seek self-improvement through continuous learning and pursuing advancement to a SOC ManagerRequired Skills and Qualifications7+ years of information security experienceAdvanced knowledge of Cyber Defense, Security Operations Center (SOC) operations, incident response, and security monitoring practices.Prioritize and escalate any issues that could put business objectives, results, or processes at risk.In-depth knowledge and experience with current cyber threats and landscape to enterprise environmentsAbility to architect and drive implementation of large-scale cross-company initiativesPrevious experience with the following tools is required: Splunk, EDR Solutions, Atlassian, ServiceNow, GitHub, Okta, and Microsoft Security productsFamiliarity with incident response frameworks and methodologies, such as the NIST Incident Response Framework or the SANS Incident Response Process, to guide efficient and effective incident handling.Strong knowledge of network protocols, network traffic analysis, and network security principles to detect and respond to network-based threats.Windows, Linux, and UNIX operating systemsCommunication skills, both verbal and writtenDesired Qualifications:Experience with incident response in cloud platforms [AWS, GCP, etc]Incident Response specific or other relevant certifications [ex. CISSP, GCFA, GCIH, GNFA, GREM, CEH, etc.]Excellent verbal, written, and interpersonal communication skillsStrong analytical skills with high attention to detail and accuracyAble to handle confidential material in a professional mannerAble to transform complex data into meaningful and prioritised actionThis job is posted with NTS Technology Services Pvt. Ltd.Job Category:News Corp is a global, diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers throughout the world. The company comprises businesses across a range of media, including: news and information services, book publishing, digital real estate services, cable network programming in Australia, and pay-tv distribution in Australia.Headquartered in New York, the activities of News Corp are conducted primarily in the United States, Australia, and the United Kingdom.

News Corp