SOC Analyst

Job Description

Position: SOC Analysts

Experience:5+ Years

Notice period:immediate-30 Days

Location: Bangalore

Detailed Job Description:

· Splunk Enterprise Security 

· Security Information Event Management (SIEM) 

· Incident Response 

· Malware Analysis 

· Forensics 

· Threat Monitoring 

· Cyber Security Operations 

· Cyber Threat Response 

· Cyber Threat Hunting 

· Cyber Investigation 

· Alarm triage 

· Security Orchestration Automation & Response (SOAR) 

· Phishing analysis 

· Phishing mitigation 

· MITRE ATT&CK Matrix 

· Kill Chain

"• Support the technical analysis of SIEM alerts as requested by the triage team.

• Support the content creation pipeline for new threats identified because of an incident, threat intelligence or vulnerability.

• Identify any technology gaps and contribute to designing solutions to address them.

• Support the automation effort to streamline and accelerate triage response.

• Drive projects initiates and control enhancements.

• Promote core values, team building, and upskilling of junior analysts.

Core Duties

• Event Triage and Analysis –investigate SIEM/SOAR events as necessary; bring experience in malware analysis, network/endpoint security to respond and contain incidents.

• Content Development - Support the creation countermeasures and mitigations in response to an incident or threat actor technique.

• Threat Hunting - Support the operational driven inputs (e.g., on the heels of an incident or event) into threat hunting and help build countermeasures/mitigations to detect commodity and targeted threats.

• Automation - Identify areas for automation and facilitate the creation of automation use cases and support their implementation.

Skills