SIEM OR SOC Analyst
Bengaluru, India
Resillion
Company Description
Resillion is a global company with end-to-end capabilities: no matter your industry, your geographical location, or stage in your digital journey. With offices in North America, Europe, and Asia, Resillion will be by your side. Helping you and your organization realize your ambitions in cyber security, testing of digital media content and quality assurance.
Whether, testing, certification, (software) development, cyber security, or data-protection, the experts at Resillion do whatever it takes. We work as long and hard as necessary to get you to market.
Job Description
SOC Analyst or SIEM Analyst
Experience Range: 2+ Years
Location : Bangalore/ Remote
Key responsibilities
- Analyse security incidents to identify the root cause.
- Investigate, document, and report on information security issues and emerging trends.
- Analyse Threat Intelligence sources for proactive identification of emerging threats.
- Participate in evaluating the security of monitored infrastructure systems and take part in recommending additional security solutions where appropriate.
- Participate in improving internal incident response processes.
- Assist with the creation and maintenance of Playbooks and Runbooks.
- Recommend enhancements to SOC security process, procedures, and policies.
- Provide vulnerability management and monitoring service to customers through vulnerability scanning tools.
- Integrate and share information with other analysts and other teams.
- Develop and coach L1 SOC analysts and assist them in building stronger skills.
- Assist with reporting and documentation work as needed.
Required skills and qualifications
- Security monitoring experience with one or more SIEM technologies, preferably Microsoft Sentinel and/or Elastic (ELK)
- Tuning of SIEM environment and creation of additional monitoring rules.
- Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols.
- Strong understanding of Windows, Linux and cloud technologies.
- Good understanding of security solutions including SIEMs, Web Proxies, Anti-Virus, Firewalls, VPN, authentication providers and mechanisms, encryption, IPS/IDS.
- Good understanding of security incident management, malware management and vulnerability management processes.
- Attention to detail and quality.
Desirable skills and qualifications
- AZ-500 Microsoft Azure Security Technologies and/or SC-200 Microsoft Security Operations Analyst
- Knowledge of Microsoft Kusto Query Language (KQL)
- Knowledge of Crowdstrike Falcon
- Prior experience with handling or managing Cyber Incident Response (NIST)
Familiarity with ITIL practices regarding incident, problem and change management
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Azure Cloud CrowdStrike ELK Encryption Firewalls IDS Incident response IPS ITIL Linux Malware Monitoring NIST SIEM SOC TCP/IP Threat intelligence VPN Vulnerability management Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs