Senior Security Analyst - Security Operations Center

We are looking for an experienced Senior Security Analyst with a strong background in SOC operations, specializing in real-time threat detection, incident response, and SIEM management, preferably with hands-on expertise in RSA NetWitness. The role requires proven capability in analyzing and responding to security events, integrating and managing log sources, and ensuring the overall health and efficiency of security systems.

• The ideal candidate should have demonstrated experience in 24 / 7 monitoring of security events, promptly identifying suspicious activities, and performing in-depth investigations to determine root causes and potential impact.
• Expertise in tuning and optimizing SIEM alert rules, creating correlation policies, and reducing false positives is essential.
• A solid understanding of integrating log sources such as firewalls, servers, and endpoints, while ensuring log integrity and backup compliance, is critical.
• The role involves analyzing malicious IPs, domains, and URLs, taking proactive measures such as blocking or escalating based on threat intelligence, and ensuring accurate documentation and timely closure of incidents through HPSM or similar ITSM platforms.
• The candidate must have a strong foundation in network security concepts, including TCP / IP, IDS / IPS, and attack vectors, coupled with experience in IP reputation analysis, malware behavior, and threat intelligence interpretation.
• Hands-on proficiency with RSA NetWitness or similar SIEM platforms such as Splunk or QRadar, along with working knowledge of ITSM tools, is mandatory.
• The role requires excellent analytical skills, attention to detail, and the ability to function effectively in high-pressure SOC environments while ensuring compliance with audit and regulatory requirements.

(ref : hirist.tech)

Skills Required

Hpsm, Ips, Ids, Splunk, Qradar