Soc Analyst

Job description
Must-Have

Good knowledge & working experience on central logging, event correlation, security incident management, SIEM architecture
Experience in implementation and management of the Splunk (SIEM solution) , configuration, data onboarding etc
Experience in writing complex correlation rules, log source integration with SIEM Implementation, configuration and management of SIEM solution. Experience shall comprise of. Capabilities of performing the enterprise wide security assessment. Tools and Technologies: Arcsight, McAfee Nitro Security, Log Logic, Splunk Security Incident Management and Response experience. Firewall, IPS and Proxy management Log Source integration with SIEM. Experience in writing XML parsers.
Create, customize and manage dashboards / reports.
Working experience in alert handling, standard availability and performance report generation.
Hands-on experience in root cause analysis of post-production performance related issues. Working knowledge of scripting languages

Good-to-Have

DLP, anti-virus and anti-malware Use of system tools such as wireshark, ethereal, packet analyser etc Cloud computing SaaS models

Role: Security Engineer / Analyst
Industry Type: IT Services & Consulting
Department: IT & Information Security
Employment Type: Full Time, Permanent
Role Category: IT Security
Education
UG: Any Graduate
PG: Any Postgraduate
Doctorate: Any Doctorate
Key Skills
Skills highlighted with ‘‘ are preferred keyskills
SOC
SIEMSecurity Operations Center