Location:Noida, UP, India
Company: Iris Software
Job Description Mandatory Skills: Log Analysis & Correlation; Threat Detection & Triage; Incident Management; SIEM & Security Tool Utilization; Analytical OR Problem Solving; Security Awareness and Training; Use Case & Detection Understanding;
Additional Skills:Hands on knowledge on CrowdStrike EDR, Netskope Suite, Email analysis
Key Responsibilities
- Monitor security events and alerts using SIEM and security monitoring tools to identify potential security threats and suspicious activities.
- Perform log analysis and event correlation across security platforms, operating systems, and network infrastructure.
- Conduct threat detection and triage activities to assess alert severity, impact, and required response actions.
- Support incident management activities including incident identification, classification, escalation, tracking, and closure.
- Investigate security alerts related to phishing, malware, brute-force attacks, unauthorized access attempts, and other cyber threats.
- Apply knowledge of MITRE ATT&CK, cyber kill chain concepts, and attack techniques to support threat investigations.
- Analyze Windows and Linux operating system logs, processes, and security events to identify potential security issues.
- Perform basic security analytics and problem-solving activities to support threat detection and incident investigation.
- Utilize basic scripting or querying techniques to support log analysis, investigation, and operational efficiency.
- Apply networking fundamentals including TCP/IP, DNS, ports, and protocols during security investigations.
- Support security awareness activities by promoting adherence to security policies and best practices.
- Maintain incident records, investigation notes, operational documentation, and reporting artifacts.
- Collaborate with various teams and stakeholders to support effective security operations and incident response activities.
Behavioral Competencies
- Demonstrates ownership and accountability while supporting security monitoring and incident response activities.
- Collaborate effectively with various teams and business stakeholders to ensure smooth delivery.
- Maintains a security-first mindset while investigating threats and security events.
- Apply strong analytical and problem-solving skills to identify and resolve security incidents.
- Shows adaptability and willingness to learn evolving cyber threats, attack techniques, and security technologies.
- Communicates clearly by sharing incident status, risks, findings, and escalation requirements proactively.
- Maintains attention to detail during threat analysis, investigation, and incident documentation activities.
- Works effectively in dynamic environments with changing threat landscapes and operational priorities.
- Takes initiative in improving threat detection effectiveness and operational efficiency.
- Demonstrates a customer-centric mindset by protecting organizational assets and ensuring operational resilience..
Mandatory Competencies