Job Description

The Onsite SOC Analyst will play a crucial role in enhancing cybersecurity operations by monitoring security alerts, analysing network traffic, and conducting thorough forensic analyses to swiftly detect and mitigate potential security incidents. This role involves utilizing deep expertise in networking, system architecture, and virtualization technologies to ensure the integrity and security of organizational systems.

Key responsibilities include collaborating with cross-functional teams to implement robust security measures and develop incident response strategies, as well as communicating technical findings and recommendations clearly to stakeholders. The successful candidate will leverage strong cybersecurity principles and hands-on experience in Security Operations, demonstrating strong analytical skills and a proactive approach to cybersecurity in a dynamic, fast-paced environment.

Job Responsibilities

• Continuously monitor and analyse security alerts and logs to identify potential incidents. Analyse network traffic patterns to detect anomalies and identify potential security breaches.
• Implement correlation rules and create playbooks as per requirements. Continuously update and suggest new rules and playbooks based on the latest attack vectors and insights from public articles and cybersecurity reports.
• Use security compliance and scanning solutions to conduct assessments and validate the effectiveness of security controls and policies. Suggest improvements to enhance the overall security posture.
• Utilise deception security solutions to deceive and detect potential attackers within the network.
• Leverage deep expertise in networking, system architecture, operating systems, virtual machines (VMs), servers, and applications to enhance cybersecurity operations.
• Work effectively with cross-functional teams to implement and maintain robust security measures. Conduct thorough forensic analysis of security incidents to determine root causes and impact.
• Assist with all phases of incident response. Develop and refine incident response strategies and procedures to address emerging cyber threats.
• Perform digital forensics to understand attack vectors and impact. Swiftly respond to and mitigate security threats, ensuring the integrity and security of organizational systems and data.
• Professionally communicate and report technical findings, security incidents, and mitigation recommendations to clients.

Qualifications Required:

• B.Tech, B.E., or M.Tech in Computer Science, Information Security, or a related field from a recognized Indian university or institution.
• B.Tech, B.E., or M.Tech in Computer Science, Information Security, or a related field from a recognized Indian university or institution.
• At least one year of experience in the cybersecurity industry, with practical experience in Security Operations, including shift work and the management of SOC processes.
• Hands-on and theoretical knowledge in Security Operations and Principles, including practical application of threat analysis, Malware/APT attacks, security measures and mitigation strategies to protect and secure critical environments.

Skills Required:

• Working knowledge across various security appliances (e.g., Firewall, WAF, Web Security Appliance, Email Security Appliance, Antivirus). Experience with SOC Operations tools like SIEM, NDR, EDR, UEBA, SOAR, etc.
• Strong analytical and problem-solving skills, with a deep understanding of cybersecurity principles, attack vectors, and threat intelligence.
• Knowledge of network protocols, security technologies, and the ability to analyse and interpret security logs and events to identify potential threats.
• Scripting skills (e.g., Python, Bash, PowerShell) for automation and analysis purposes.
• Skilled in evaluating and integrating inputs from people, processes, and technologies to identify effective solutions.
• Demonstrate a thorough understanding of the interdependencies between these elements and leverages this knowledge to develop comprehensive, efficient, and sustainable problem-solving strategies.
• Excellent communication skills to articulate complex technical concepts to non-technical stakeholders and collaborate effectively with team members.
• Ability to prioritize and manage multiple tasks in a dynamic environment.
• Willingness to stay updated with the latest cybersecurity trends and technologies.

Job Type: Full-time

Pay: ?350,000.00 - ?700,000.00 per year

Schedule:

• Day shift

Experience:

• total work: 1 year (Required)

Willingness to travel:

• 50% (Required)

Work Location: In person