Send me Jobs like this Description
Investigate security event activity that has been flagged, if suspicious activity is confirmed or if unable to determine the activity.
Discuss with level 2 Analyst for confirmation of the findings.
Maintaining the highest quality, customer satisfaction and abide to the SLAs
Monitor SIEM and other SOC tools by following operational process and procedures to appropriately analyze, escalate, and assist in remediation of security incidents
Ensure to also identify potential false positives.
Maintain shift log register, shift login / logout record.
Update Shift Handover document
Facilitate Shift Handover meetings
Assist the L2 / CSIRT team and provide analysis and trending of security log data from a large number of heterogeneous security devices and testing of the Alarms in SIEM
siem soc security analysis security analyst Analyst HP Arcsight Splunk Security Intrusion Analyst UDP DHCP FTP SFTP ATM SNMP SMTP
Desired Candidate Profile
Education, Experience, Skills
Bachelors / Masters degree in Information Technology with 1-3 years of experience.
Robust, technically qualified & has experience handling SIEM alerts
Exposure in categorizing information security alerts from tools like SIEM , DLP , Proxy
Basic exposure in handling Information Security Alerts from multiple tools.
Basic understanding of
Operating Systems, Virtualization technologies, Network Devices, Cloud computing concepts, Web Proxies, Firewalls, Intrusion Detection / Prevention Systems, Antivirus Systems, Data Loss Prevention, Vulnerability Assessment tools
Understands SIEM tools functionality and logic behind creating rules and filters, integrating with different solution e.
g. AV software, IDS, IPS etc...
Basic understanding of network protocols including TCP / IP, UDP, DHCP, FTP, SFTP, ATM, SNMP, SMTP, SSH, SSL, VPN, RDP, HTTP and HTTPS.
Understanding of various cyber-attacks and recent hacking techniques
Use vulnerability assessment data to pinpoint potential points of attack
Strong oral and writing skills to articulate complex ideas clearly and effectively; experience creating and presenting documentation and management reports.
Ability to manage multiple tasks, priorities, and operational assignments in a high pressure environment.
GIAC Certified Intrusion Analyst
Certifications in Splunk Security app / HP Arcsight / IBM Qradar or other SIEMs
CompTIA Security + , Cisco Certified Security Professional / Associate, CEH,
UG : B.Tech / B.E. - Any Specialization
PG : M.Tech - Any Specialization
Doctorate : Doctorate Not Required
Company Profile :
Cargill Business Services India Private Limited
Cargill Business Services India Private Limited Download PPT Photo 1 View Contact Details