Job Description
JOB TITLE: Security Analyst
LOCATION: Gurgaon, India
BUSINESS UNIT: Information Technology
REPORTING MANAGER :
SOC Manager
REQUIREMENTS & COMPETENCIES:
Bachelor’s degree, trade school certificate in IT 1-3 years of experience in Information Security, Incident Response, etc. (or related field) SIEM (Security Information Event Management) monitoring IDS/IPS (Intrusion Detection System/Intrusion Prevention System) monitoring Proactive remediation of new exploits Must have expert networking protocol knowledge Able to demonstrate an understanding of current offensive / defensive computing and forensics Prior experience detecting, analyzing and/or responding to security incidents Demonstrated ability to analyze and correlate information from a wide variety of enterprise technologies Hands-on experience with common security technologies (IDS, Firewall, SIEM, etc.) Understanding of common security threats, attack vectors, vulnerabilities and exploits Shift work, with flexibility to cover both day and night time shifts RESPONSIBILITIES: Provide incident response as part of the 24x7 Security Operations Center Monitoring of events & alerts from a multitude of technologies to detect malicious activity Detailed analysis using a variety of tools and techniques to investigate, navigate, correlate and understand security incidents to the fullest extent of the data available Data mining of log sources to uncover and investigate anomalous activity, along with related items of interest Promote a risk-aware culture, ensure efficient and effective risk and compliance management practices by adhering to required standards and processes. Conducts initial triage of security events and incidents. Facilitates communication within the SOC and documents progress throughout the Incident Response Lifecycle. Recognizes potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information Proper escalation and hand-off of security incidents for containment and remediation Incident Reporting Security log review