SIEM Operations Specialist

Security Operations Centre (SOC) Administrator

Opportunity :

We are looking for an experienced professional for the SOC Lead position. The candidate should have experience with SIEM setup and operational knowledge, cloud environments. The candidate should be highly motivated, inquisitive and a problem solver. Knowledge of Incident response and SOAR methodologies is a must.

Job Location : Pune (Baner)

Job Description :

• Primarily responsible for security event monitoring, management and response.
• Experience with Open Source SIEM Tools and implementation.
• Experience with one or more Security Information and Event Management (SIEM) solutions.
• Creation of reports, dashboards, metrics for SOC operations and presentation to Sr. Management.
• In-depth understanding of security threats, threat attack methods, and the current threat environment.
• Understanding of common attacks and their SIEM signatures.
• Hands-on experience in security monitoring, Incident Response (IR), security tools configuration, and security remediation.
• Must have excellent troubleshooting and analytical skills.
• Must be able to clearly articulate and propose security solutions in business terms.
• Must be able to multitask in a fast-paced environment.
• Knowledge of containers and orchestration technologies.
• Well versed with log parsing.
• Understanding of network protocols (TCP / IP stack, SSL / TLS, IPSEC SMTP / IMAP, FTP, HTTP, etc.).
• Understanding of Operating System, Web Server, database, and Security devices (firewall / NIDS / NIPS) logs and log formats.
• Understanding of AWS Services for security detection and mitigation.

Experience Range : 4 - 6 years of experience in IT Infrastructure and Security.

Technical Expertise :