Security Analyst - L1 SOC
Location
Bangalore | India
Job description
We are now looking for a Security Analyst professional
- This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels
- The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured
- We believe in trust we trust each other to do the right things Therefore!
- we believe in taking decisions as close to the product and technical expertise as possible.
- We believe in creativity trying new things and learning from our mistakes . We believe in sharing our insights and helping one another to build an even better user plane.
- We truly believe in happiness , we enjoy and feel passionate about what we do and value each other s technical competence deeply.
What you will do Support the following systems and functions: - Security event management on 24*7 shift
- Monitor incoming event queues for potential security incidents
- Security incident management, 1st level triaging, issues and RCA
- Perform initial investigation and triage of potential incidents; and raise or close events as applicable
- Monitor SOC ticket (or email) queue for potential event reporting from outside entities and individual users
- Support parsers and rules development for the SIEM
- Raise incidents to respective team for resolution (within SLA)
- Identity Access Management
- Create and track the access to customer environments
- Process improvements
- Identify improvements in processes and KPIs
- Adapt to improvement initiatives
- Shift handover
- Maintain SOC shift logs with relevant activity from the shift
- Document investigation results, ensuring relevant details are passed to Security Engineer for final event analysis
- Update SOC collaboration tool as necessary
- Vulnerability scanning and reporting
- Schedule the vulnerability assessment scan for desired frequency based on agreed plan for nodes in scope
- Track and provide details of the scan planned/ ongoing/ completed status as and when required
- Governance Reports
- Preparation of daily, weekly and monthly reports
You will bring Basic knowledge of a Security Information and Event Management System (SIEM), such as McAfee, Splunk, Qradar, etc.
- Basic knowledge of a vulnerability scanning system such as Nessus, Tripwire, etc.
- Knowledge of both Linux-based and MS Windows-based systems with technical understanding and skills for analytical problem-solving
- Knowledge of IP networking
- Ability to work in shifts
- The ability to work constructively under pressure
- Ability to work both in a team as well as individually
- Knowledge sharing collaboration skills
- Customer oriented, service minded
- Deliver results meet customer expectations
- Excellent communication skills, English is a must
Key Qualifications: Education:
- Graduate in Computer Science or similar
Minimum years of relevant experience: - 3 to 5 years with at least 1 year of experience in IT security
- ITIL certification, CEH, Security +, CCNA Security or similar will be an advantage
- Basic knowledge of telecommunications networks will be an added advantage
Job tags
Salary