Information Security Analyst (SOC) Inspiroz IT Services Pvt Ltd

0.0 - 3.0 years

0 Lacs

navi mumbai, maharashtra

On-site

The primary function of the SOC Associate is to analyze any incidents flagged by the Security Tools and undertake a detailed investigation of the Security Event. You will determine whether the security event will be classified as an incident and coordinate with the customer IT/in-house Managed services team for the resolution of the Security Incident. Responsibilities: - Escalate validated and confirmed incidents to Managed Services team. - Notify Account Managers of incidents and required mitigation work. - Fine-tune SIEM rules to reduce false positives and remove false negatives. - Collect global threat intelligence and internal threats then inject actions based on analysis and recommendation. - Proactively research and monitor security information to identify potential threats that may impact the organization. - Develop and distribute information and alerts on required corrective actions to the organization. - Learn new attack patterns, actively participate in security forums. - Work closely on Vulnerability Assessment and coordinate with Managed services team. - Understand the structure and the meaning of logs from different log sources such as FW, Servers, and End User Devices. - Perform analysis and report breaches in Backup Compliance such as Barracuda, EMC Avamar, Datto. - Perform threat intel research. - Open and update incidents in ConnectWise Manage to report the alarms triggered or threats detected. Analysts should properly include for each incident on CW Manage all details related to the logs, alarms, and other indicators identified in accordance with the intervention protocol of each client and the SLA. - Track and update incidents and requests based on clients" updates and analysis results. Requirements: - Knowledge or hands-on experience of implementation and management of CrowdStrike Falcon, ConnectWise Manage, ConnectWise Automate, Windows AD, Linux, and Infra technology. - Experience with Security Information Event Management (SIEM) tools, creating advanced correlation rules, administration of SIEM, system hardening, and Vulnerability Assessments. - Expertise in TCP/IP network traffic and event log analysis. - Knowledge and hands-on experience with Falcon CrowdStrike, ConnectWise Manage, Bit Defender Gravity would be nice to have. - Knowledge of ITIL disciplines such as Incident, Problem, and Change Management. - Configuration and Troubleshooting experience on Checkpoint, Cisco, FortiGate, Palo Alto, and SonicWALL firewalls would be an added advantage. - Knowledge of Scripting. Timings for Shifts: (10 hrs Shift 5 days working) - 7:30 am - 5:30 pm - 12:30 pm - 10:30 pm - 7:30 pm - 5:30 am - 9:30 pm - 7:30 am Work Experience: 0 - 6 Months Additional Skills: CCNA, MCP Inspiroz IT Services Pvt Ltd - At Inspiroz IT, we solve technology challenges by providing unmatched expertise through strategy, implementation, and managed services. We partner with school leaders, educators, and corporates to improve the way technology is used to drive transformational outcomes and achieve operational goals. Our Customer Promise is to be Helpful, Responsive & Entrepreneurial. For more information kindly visit the company website http://www.inspiroz.com Interested candidates can share their updated resume on email ID: samruddhi.s@inspirozit.com Note: Interview will be conducted face to face. Job Types: Full-time, Permanent, Fresher Benefits: - Health insurance - Provident Fund Work Location: In person,

Posted 1 week ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.