Analyst

Job Description

Qradar SIEM (Worked on multiple SIEMs - good to have ) Good Understanding of Attacks and its patterns, IOA Good understanding of Security devices logs and its analysis Good in communication Good analytical skills with capability to perform detailed analysis for security events/incidents. - Deliver basic technical tasks assigned as per the timelines and esclate to next level wherever needed - Maintain activity log, SLA details and other critical information necessary for the smoother execution of project - Resolve all technical issues / queries which are assigned - Partner with other cross-functional teams to provide effective resolution - Monitoring and analysis of cyber security events using security technologies like SIEM, NGFW, UEBA, NGAV, Mail Security, DLP, ADC - Execution of SOC procedures - Triage security events and incidents, detect anomalies, and report/notify remediation actions to the responsible team, and ensure proper tracking until closure - Ensure completeness of the incident information - Analysis of phishing emails reported by internal end users - Escalation of incidents to be handled to L2 SOC team, when relevant - Follow up on remediation activities of resolver groups - Triage on general information security tickets - Regular notifications and periodic reporting on operational activities