This job offer is not available in your country.

SOC Admin

NMS Consultantmumbai, maharashtra, in

3 days ago

Job description

Job Description : -

The Use-Cases Factory worker is responsible for designing, implementing, and managing use-cases within the CyberSOC Detect from the log integration to the incident handling playbook. This role involves creating detection and response mechanisms to identify and mitigate cybersecurity threats, ensuring the organization & digital environment remains secure.

He will interact with various stakeholders who may request compliance, business, or threat use-cases, among others.

The Use-Cases Admin is responsible for :

Develop and deploy use-cases to detect security threats into our SIEM from the log collection to the incident handling playbook. Fine-tune detection rules to minimize false positives and false negatives.

Maintain detailed documentation of use-cases, ensuring transparency and accountability.

Manage execution of standard procedures for the content management, change management and lifecycle management of the use-cases.

Work closely with other IT and security teams to develop specific use cases and to enhance the overall security posture of the organization. Share insights and recommendations to improve overall cybersecurity posture.

Regularly review and update use-cases to adapt to the evolving threat landscape and incorporate new threat intelligence.

Manage reports, dashboards, metrics for CyberSOC KPIs and presentation to senior management & other stakeholders.

Skills

Bachelor's degree in Computer Science, Information Security, EXTC or related field.

Relevant certifications (e.g., CISSP, CCSP, CompTIA Security+) are highly desirable.

Proven experience (3+ years) working within the Cybersecurity field, with a focus on developing and managing use-cases.

Excellent understanding and proven hands-on experience in SIEM / SOAR concepts such as log collection, correlation, aggregation, normalization, parsing, playbooks, layouts.

Experience with Palo Alto XDR and / or other SIEM platforms like Sentinel, Qradar, Splunk, ArcSight, etc.

Experience with Palo Alto XSOAR and / or equivalent SOAR Platforms like Resilient, Phantom, etc.

Proficiency in scripting languages (e.g., Python, Bash) for automation and customization of security processes is highly desirable.

Deep understanding of various cyber threats, attack vectors, and defense mechanisms.

Create a job alert for this search

Soc • mumbai, maharashtra, in

Related jobs

Promoted

Core Admin - Officer / AM

ConfidentialMumbai

Reconciliations of holdings, banks and units.Corporate Actions Processing and Accounting.Portfolio and Factsheet Reporting. Regulatory Reports and Internal reporting.Data Migration and Maintenance a...Show moreLast updated: 8 days ago

Promoted

SAP CO S4 HANA - C01

ConfidentialNavi Mumbai, Mumbai, Mumbai City

End to End CO Implementation experience.Logical & technical knowledge of Cost centre Assessment cycles COPA assessment cycles allocation and Distribution. Sound knowledge of auto overhead and Activi...Show moreLast updated: 30+ days ago

Promoted

People & Admin Operations Executive

ASafe GlobalThane, IN

People & Admin Operations Executive.This role is a great opportunity to work closely with teams across borders, gain global exposure, and be at the centre of our people and operational functions.Jo...Show moreLast updated: 6 days ago

Promoted

IT / Computer security Analyst as Admin Executive

KMM Infotech Solutions Private LimitedThane, IN

Job Title : IT / Computer Security Analyst as Admin Executive.We are seeking a proactive, detail-oriented .Security Consultant in driving key security initiatives across the organization.This role i...Show moreLast updated: 4 days ago

Promoted

SOC Analyst L2 / L3 - SIEM,IBM Qradar,SOAR,Threat hunting,Forensics - 4+ Years - Mumbai Vikhroli

Innova ESImumbai, maharashtra, in

Interview Date - 18th Sep - Thursday.Job Location - Mumbai / Vikhroli.Please refer to the job description below for your kind reference : . SOC Analyst – Level 2 (L2) / Level 3 (L3).Deep-dive investiga...Show moreLast updated: 6 days ago

Promoted

Smartsheet Administrator

TrantorThane, IN

Job Title : Smartsheet Administrator.The role requires hands-on experience in.Smartsheet dashboards and forms.KPIs, and executive-level visibility. Administer and manage Smartsheet platform including...Show moreLast updated: 16 days ago

Promoted

Secpod Admin

ConfidentialMumbai

SecPod tool management - Configure, monitor, and troubleshoot SecPod tool.Vulnerability management - Identify, analyse & remediate vulnerabilities. Patch management- Deployment and managing patches ...Show moreLast updated: 6 days ago

Promoted

Mendix Admin Any Tech M location

Tech Mahindrathane, maharashtra, in

A Mendix Administrator typically manages the Mendix platform and its applications within an organization.Their responsibilities include user and access management, application deployment and monito...Show moreLast updated: 17 days ago

Promoted

SOC

ConfidentialMumbai

Minimum 2-12 years of professional experience in cybersecurity, with experience in a SOC environment.Deep understanding of networking, system administration, cloud environments (AWS / Azure / GCP) and ...Show moreLast updated: 8 days ago

Promoted

System Admin

SourcebaeThane, IN

System Admin (SRE + DevOps & Admin).Immediate to 15 days preferred.Windows Server (2012 / 2016 / 2019), Active Directory, LDAP. Scripting : Python (must-have), PowerShell, Bash.Monitoring (Nagios / Zabbix)...Show moreLast updated: 4 days ago

Promoted

Billing & Accounts Administrator (AP / AR)

Telelink Business SystemsThane, IN

Own Telelink’s end-to-end billing and collections cycle and keep cashflow smooth.You’ll raise accurate invoices, manage accounts payable / receivable, reconcile bank feeds, and provide clean month-en...Show moreLast updated: 4 days ago

Promoted

Chief Information Security Officer (CISO)

Vriba SolutionsKalyan-Dombivli, IN

Chief Information Security Officer (CISO).Executive Leadership / Global Security Office.We are seeking an experienced and visionary. Chief Information Security Officer (CISO).The CISO will be respon...Show moreLast updated: 6 days ago

Promoted

SOC Analyst

ConfidentialMumbai

Tier 1 Overflow Responsibilities : .Develop new signatures and correlated searches based on a variety of requirements.Document work within a security operations ticketing system.Analyze data and even...Show moreLast updated: 19 days ago

Promoted

Solaris Administrator

Tata Consultancy Servicesmumbai, maharashtra, in

Please find the job description.Oracle Solaris 11 OS Administration.DELL EMC Networker Backup & Recovery software Administration. Hitachi Storage Administration.Cisco SAN switches Administration.Show moreLast updated: 5 days ago

Promoted

SOC SME

WTW GLOBAL DELIVERY AND SOLUTIONS INDIA PVT LTD.Mumbai

Summary of Role : Willis Towers Watson (WTW) Technology Compliance SOC SME will ensure that the organization meets its regulatory obligations through application of a...Show moreLast updated: 5 days ago

Promoted

OCI Admin

TekgeminusKalyan-Dombivli, IN

Experience Preferred : 2-3 Years.In-depth knowledge of OCI services and architecture, including Tenancy, VCNs, Compartments, Networking, Storage, Database, IAM, Security Groups, and Bastion Service....Show moreLast updated: 6 days ago

Promoted

Salesforce Administrator

Quantum Global KidsKalyan-Dombivli, IN

Salesforce Admin & Junior Developer (Full-Time, Remote).The ideal candidate will also be familiar with.Pardot (Marketing Cloud Account Engagement). You will support daily operations, assist with enh...Show moreLast updated: 18 days ago

Promoted

Deployment Officer

SapaadKalyan-Dombivli, IN

Our flagship product, also named Sapaad, has achieved remarkable success over the past decade, empowering.F&B businesses across 40+ countries. Driven by a passionate team of developers, designers, a...Show moreLast updated: 23 days ago