SOC Monitoring L3 - Job Description Roles & Responsibilities · McAfee ESM - SIEM Management and Security Event Monitoring.
Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring · Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives · Responsible for team & vendor management, overall use of resources and initiation of corrective action where required for Security Operations Centre.
Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring · Responsible for integration of standard and non-
standard logs in SIEM by parser development. · Co-ordination with stakeholders, build and maintain positive working relationships with them Required Skills · Minimum 5+ years of experience of performing Level 3 security incident response activities in Security operation centers (SOC) environment.
Hands-on experience in performing Level 3 security incident response activities in Security operation center(SOC) environment to develop new rules, policies for incident detection, intrusion analysis.
Strong security fundamentals including OS, end point, perimeter security, malware defense, advanced threats protection.
Review and analysis of emerging threats and vulnerabilities, risks and business requirements to translate the same in detection and remediation measure.
Team player willing to share knowledge and learn from others. · Must have information security related certification. · Experience in McAfee Nitro SIEM is required.