Department: SOC

Roles and Responsibilities: -

• Strong oral and written skills is a must.
• Experience in managing global customers specially in US and Canada is an advantage.
• Proficient in Incident Management and Response.
• In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. (Strong knowledge of EDR and XDR is an advantage)
• Strong understanding of Security solutions like EDR, XDR, NDR, EPP, Web Security, Firewalls, Email Security, O365, SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, Advanced SOC etc.
• Responsible for working in a 24x7 Security Operation centre (SOC) environment.
• Should have hands-on experience to create, perform, review and deliver Incident Response playbooks and procedures.
• Provide analysis and trending of security log data from a large number of heterogeneous security devices
• Experience in threat and vulnerability analysis as well as security advisory services.
• Experience with Security Information Event Management (SIEM) tools, creating advanced co-relation rules, and Vulnerability Assessments ( hands-on experience is a must)
• Must have experience in threat hunting.
• Experience in forensic investigations is an advantage
• Investigate, document, and report on information security issues and emerging trends
• Other tasks and responsibilities as assigned
• Experience with creating and fine tuning of Rules, and Playbook etc.
• Knowledge of various operating system flavours including but not limited to Windows, Linux, Unix
• Knowledge of TCP/IP Protocols, network analysis, and network/security applications;
• Knowledge of common Internet protocols and applications
• Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.