Talent.com
Technical Specialist - Cyber Security

Technical Specialist - Cyber Security

ConfidentialBengaluru / Bangalore, India
7 days ago
Job description

Description and Requirements

Job Description

Security Operations Centre (SOC) Analyst plays a vital role in Security delivery. As a SOC Analyst Level 3, you will be on the front line of Cyber Defense, detecting & responding to Cyber Incidents as they happen. You will work with other team members to provide situational awareness through detection, containment, and remediation of IT threats. This job requires great attention to detail and general awareness of Cyber Security tools like SIEM, XDR, EDR, IDS / IPS, ability understand various logs - network logs, sys logs, Firewall logs. As a SOC Analyst you are expected to have working knowledge in areas of networking, malware analysis, incident response, vulnerability management.

  • Threat & vulnerability analysis
  • Investigate, document & report Information security issues & emerging trends
  • Analysis & response to unknown vulnerabilities

Responsibilities

As a SOC Analyst - Level 3, you will :

  • Operate as detection and security incident response subject-matter expert
  • Technical subject-matter expert in SOC / SIEM and supporting technologies (EDR, UEBA, etc.) to develop custom queries (e.g., KQL) and playbooks for the SOC analysts to utilize in their investigations.
  • Align and maintain detection capability to the Mitre attack framework.
  • Perform root cause analysis of detection failures, identify areas for improvement.
  • Drive the continuous development of detection capability for SOC
  • Manage, investigate, and resolve complex issues with the Security tooling.
  • Securely configure the SIEM, and other SOC solutions in accordance with relevant policy and regulation
  • Support the Threat hunters in executing complex data analysis.
  • Provide a point of escalation for SOC / security detection technical service issues.
  • Ensure the relevant security tools are compliant with company standards and governance.
  • Contribute to existing Policy, procedures and process documentation enhancements
  • Define and implement technical governance processes for security tooling of SOC, SIEM and other security tools including AV, EDR, Defender Cloud.
  • Create and review detection technology high and low level designs.
  • Propose and identify automation opportunities resulting from incidents
  • Provide recommendations to the Client team, on how to mitigate or avert the occurrence of any suspicious activity within their environment.
  • Provide In depth analysis to the user / customer about the security incidents (eg. Phishing attack)
  • Troubleshoot connector / logger / Manager for log retrievals
  • Prepare SOC Management Reports.

    • Analyzing & preparing daily and monthly reports based on the devices which are being monitored

  • Creating Reports and Dashboards based on the customer requirement.
  • Creating Queries for the Rules requested by client for real time alerts.
  • Creating Reports which helps in providing the logs for the alerts, for finding any possible threats.
  • Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths.
  • Independently follow procedures to contain, analyze, and eradicate malicious activity.
  • Change Management / Implementation : Independently implement changes to meet customer infrastructure needs within area of technical responsibility
  • Patch and Security Management : Apply patch and security changes per policy.
  • Configuration Management : Review Configuration Management Database (CMDB) entries to ensure they are complete and accurate.
  • Quality : Provide continual improvement recommendations for direct responsibility area (process improvement, technical standard updates, etc).
  • Project Management : Lead & participate in customer and internal projects, including transformation.
  • Customer Relationship Management : Set expectations with customers and / or internal businesses / end users within defined parameters.
  • Teamwork : Work as part of a team, which may be virtual and / or global. Participate as part of a team and maintains good relationships with team members and customers

    • Skill

    8 - 12 years of relevant experience

    Typical skills include :

  • Fine-tune SIEM and other SOC tooling to exclude noise and false positives
  • Create and fine-tune content in SIEM - correlation rules, Dashboard and Reports etc
  • Interact with SIEM, EDR and NDR vendors (TAC Support) to remediate any issues with tooling
  • Evaluate new solutions for SOC
  • Identify opportunities to improve overall capacity, playbook and runbook
  • Understanding of threat landscapes and threat modelling, security threat and vulnerability management, and security monitoring
  • Working knowledge of tools and techniques used by attackers to gain entry into corporate networks, including common IT system flaws and vulnerabilities.
  • Knowledge of industry standards such as ISO 27001, HIPAA, FedRAMP, Cloud Security Alliance, NIST frameworks and risk methodologies
  • Demonstrated experience in communicating complex security concepts, both verbally and in writing, to a variety of audiences
  • Must take ownership of tasks and demonstrate high degree of autonomy to ensure completion
  • Excellent understanding of related technologies (Networking, Operating Systems)
  • General Project Management (Expert)
  • Customer / Vendor Management (IExpert)
  • Business Analysis (Expert)
  • Has ability to perform / drive resolution of problems on individual products.
  • Able to communicate broad and specific concepts with team and to peers.
  • Able to produce documentation for use by team and customer.
  • Able to perform / drive resolution of problems on combinations and interactions of products
  • Strong verbal & written communication skills
  • Proactive approach to meet & exceed goals

    • Qualification & Experience

    Bachelor's degree in engineering (Electronics, Communication, Computer Science)

    8 - 12 years of relevant experience in SOC domain

    Strong understanding ITIL process

    Recognized Cyber Security certifications, such as CISSP, CISM, SANS, SABSA, OSCP are advantageous.

    Microsoft Security and compliance certifications such as SC-200, MS-500 and AZ-500 preferred

    Skills Required

    Ips, Configuration Management, nids, Vulnerability Management, Incident Response, Siem, Ids, EDR

    Create a job alert for this search

    Technical Specialist • Bengaluru / Bangalore, India

    Related jobs
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Artifact Corporationhosur, tamil nadu, in
    Job Title : Onsite Cybersecurity and Networking Specialist.Location : Hyderabad, Telangana, India — Onsite at Data Center. Employment Type : Full-Time, Onsite (Resident Engineer Support).We are seeking...Show moreLast updated: 2 days ago
    • Promoted
    Specialist – Network Security

    Specialist – Network Security

    AB InBev GCC IndiaBengaluru, Karnataka, India
    And more than ever, it’s our future.A future where we’re always looking forward.Always serving up new ways to meet life’s moments. A future where we keep dreaming bigger.We look for people with pass...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    Dautomhosur, tamil nadu, in
    Security Monitoring and Incident Response.Monitor networks and systems for potential security breaches.Investigate and respond to security incidents and anomalies. Conduct forensic analysis to deter...Show moreLast updated: 2 days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aihosur, tamil nadu, in
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Engineer with Splunk

    Cyber Security Engineer with Splunk

    IntraEdgehosur, tamil nadu, in
    This role will lead the development and implementation of intelligent security solutions using SIEM, SOAR, and machine learning to enhance detection, response, and operational efficiency across the...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    APN Consulting, Inc.Bengaluru, IN
    IT staffing and services company offering innovative business solutions to improve client business outcomes.We focus on high impact technology solutions in ServiceNow, Fullstack, Cloud & Data, and ...Show moreLast updated: 1 day ago
    • Promoted
    Information Technology Security Specialist -

    Information Technology Security Specialist -

    BNP ParibasBengaluru, Karnataka, India
    APAC Production Security is responsible for implementing and operating cyber-security systems to protect BNP Paribas APAC Information Systems (i. The team is responsible for multiple IT Security act...Show moreLast updated: 3 days ago
    • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    Nexoria Techworks Inc.hosur, tamil nadu, in
    Job Description : Cybersecurity Engineer.Cybersecurity, Information Security, Threat Management.Your core responsibilities will include : . Implement security measures to proactively identify and mitig...Show moreLast updated: 25 days ago
    • Promoted
    Staff Cyber Technical Specialist - AppSec [T500-21186]

    Staff Cyber Technical Specialist - AppSec [T500-21186]

    Albertsons Companies IndiaBengaluru, Karnataka, India
    About Albertsons Companies Inc.As a leading food and drug retailer in the United States, Albertsons Companies, Inc.Our well-known banners across the United States, including Albertsons, Safeway, Vo...Show moreLast updated: 3 days ago
    • Promoted
    Cyber Security Trainer

    Cyber Security Trainer

    Veherehosur, tamil nadu, in
    Vehere is seeking a Cybersecurity Trainer to design, develop, and deliver world-class training for our customers, partners, and internal teams. You will play a key role in enabling users to master V...Show moreLast updated: 16 days ago
    • Promoted
    Senior Security Engineer

    Senior Security Engineer

    CBTShosur, tamil nadu, in
    Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst. Certifications, Accreditations, Licenses.One or more of th...Show moreLast updated: 16 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Innefu LabsBangalore, IN
    We are seeking experienced and detail-oriented professionals for the role.The selected candidates will be responsible for assisting cybercrime investigations by collecting and analysing digital evi...Show moreLast updated: 2 days ago
    • Promoted
    Senior Cloud Security Specialist

    Senior Cloud Security Specialist

    ACL Digitalhosur, tamil nadu, in
    We are a leading organization in the field of information security, dedicated to protecting our clients' data and ensuring their digital safety. Our mission is to provide innovative security solutio...Show moreLast updated: 2 days ago
    • Promoted
    Security & Compliance IT Specialist / Engineer

    Security & Compliance IT Specialist / Engineer

    aecc - digital innovation hubhosur, tamil nadu, in
    Support the organisation’s security posture through monitoring, incident response coordination, and compliance activities. Work closely with IT operations, engineering, and leadership to ensure syst...Show moreLast updated: 14 days ago
    • Promoted
    Cyber Security Specialist

    Cyber Security Specialist

    Tiger AdvisoryBangalore, IN
    Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 30+ days ago
    • Promoted
    Staff Cyber Technical Specialist - DLP [T500-21227]

    Staff Cyber Technical Specialist - DLP [T500-21227]

    Albertsons Companies IndiaBengaluru, Karnataka, India
    About Albertsons Companies Inc.As a leading food and drug retailer in the United States, Albertsons Companies, Inc.Our well-known banners across the United States, including Albertsons, Safeway, Vo...Show moreLast updated: 1 day ago
    • Promoted
    Cyber Security Manager

    Cyber Security Manager

    CareerUS Solutionshosur, tamil nadu, in
    The Cyber Security Manager is responsible for.The Cyber Security Manager also leads a team of security professionals and collaborates across departments to strengthen the company’s overall.Develop,...Show moreLast updated: 2 days ago
    • Promoted
    OT Cyber Security Specialist

    OT Cyber Security Specialist

    PwC IndiaBengaluru, Karnataka, India
    We are seeking a highly skilled OT Security, Network and IIoT specialist with a robust background in operational technology. This role involves leading the development and implementation of integrat...Show moreLast updated: 3 days ago