SOC & VAPT Security Analyst

Role Overview We are seeking a skilled SOC & VAPT Security Analyst with strong expertise in analyzing and remediating vulnerabilities identified in VAPT reports across firewalls, servers, and network infrastructure. The candidate will be responsible for performing detailed security assessments, validating SOC alerts, implementing fixes, and ensuring compliance with internal and external security standards.

Key Responsibilities1. VAPT Analysis & Remediation Review and interpret VAPT reports for firewalls, servers (Linux / Windows), and network devices.

Prioritize vulnerabilities based on criticality, exploitability, and business impact.

Perform root-cause analysis for reported issues.

Implement remediation steps, including patching, configuration hardening, and access control corrections.

Retest and validate fixes after implementation.

2. Firewall Security Analyze firewall configurations (FortiGate / Cisco).

Apply recommended security best practices and VAPT hardening guidelines.

Validate rules, NAT policies, SSL inspection, and IPS / IDS configurations.

Ensure secure access control policies and eliminate overly permissive rules.

3. Server Security Hardening Conduct configuration analysis for Linux and Windows servers.

Implement OS-level hardening based on CIS benchmarks.

Ensure secure configurations for SSH, RDP, firewalld / iptables, sudo policies, password policies, and logging.

Patch vulnerabilities and validate compliance.

4. SOC Monitoring & Incident Response Investigate SOC alerts related to network, firewall, and server events.

Correlate SOC findings with VAPT vulnerabilities.

Work with the SOC team to tune rules, improve detection, and reduce false positives.

Document incidents, findings, and RCA.

5. Documentation & Compliance Prepare detailed remediation reports and compliance matrices.

Maintain evidence for security audits.

Document revised firewall and server configurations after fixes.

Support quarterly / annual VAPT cycles.

Skills & Experience Required 2–6 years of experience in SOC, VAPT, or Security Operations.

Strong knowledge of firewall technologies (FortiGate, Cisco ASA, Cisco FTD, Palo Alto).

Experience with Linux (RHEL / Ubuntu) and Windows server hardening.

Hands-on experience with vulnerability scanners (Nessus, OpenVAS, Qualys, Rapid7).

Understanding of CVEs, CVSS scoring, and remediation strategies.

Familiarity with SIEM tools (FortiSIEM, Splunk, QRadar, ELK, Sentinel, etc.).

Knowledge of CIS Benchmarks, ISO 27001, NIST, and security best practices.

Strong troubleshooting skills for network, OS, and firewall configurations.

Preferred Certifications (Optional but Beneficial) CEH / CHFI

CompTIA Security+

Fortinet NSE certifications

Cisco CCNA / CCNP Security

OSCP (added advantage)

Soft Skills Strong analytical and documentation skills.

Ability to work independently and coordinate with cross-functional teams.

Good communication skills for reporting and escalation.