Security Analyst

Forescout

2 - 8 years

11 - 12 Lacs

pune

Posted:8 hours ago| Platform:

Apply

Skills Required

linux vpn access management soc network security workflow windows security operations ips technical documentation

Work Mode

Work from Office

Job Type

Full Time

Job Description

Detection, monitoring, analysis, resolution of security incidents; participate in providing containment and recommendations.
Coordinate escalations to external client support teams to ensure timely delivery of incident resolutions.
Perform network/system/application/log intrusion detection analysis and trending.
Contribute in tuning of the SIEM filters and correlation rules to continuously improve detection
Participate in the security incident handling efforts in response to a detected incident, and coordinate with other stakeholders and clients.
Ensure that Service Level Agreements are met.
Maintain standard operating procedures, processes and guidelines.
Contribute to automate analysis and investigative functions / tasks , administration and remediation procedures, workflows and other operational tasks.
Maintain awareness of trends in security regulatory, technology, and operational requirements
Shift rotation will be required for this role.
The Security Analyst is responsible for the security analysis, incident classification, investigation and incident response actions including notification and alerting.
Through the correlation rules and use-cases in the monitoring platform, you will Monitor customer environments for possible security incidents, using knowledge of attack types and standard protocol behaviour to classify incidents, comment, and provide advice on mitigation or remedial actions.
Identification of incidents and subsequent analysis and investigation to determine their severity and the response required.
Ensure that incidents are correctly reported and documented.
Be prepared to provide a Technical Escalation Point during security incidents, establishing the extent of an attack, the business impacts, and advising on how best to contain the incident along with advice on systems hardening and mitigation measures to prevent a reoccurrence.
Maintain a keen understanding of evolving threats and vulnerabilities to ensure the security of the client network.
As required update Protective Monitoring/SOC documentation, processes and procedures.
Support, troubleshoot, configure, manage, and upgrade FW, NIDPS, UTM, VPN, WAF and a wide variety of other security products

What You Will Bring To Forescout

Graduate with a degree from a recognized university with specialization in Computer Sciences or any other discipline, combined with 2-8 years of directly related practical experience and demonstrated ability to carry out the functions of the job.
Strong experience of any SIEM platform (ELK, Splunk, QRadar, ArcSight, LogRhythm, RSA, etc.)
Thirst for knowledge, inquisitive nature, keen interest in actively participating in SOC expansion.
Experience working in an IT Security Operations Center, using SANS methodology.
Experience and extensive knowledge of Security Information Event Management.
Strong network security knowledge including firewalls, IPS/IDS, WAF, NAC platforms from different vendors.
Working knowledge or hands-on experience in endpoint security detection & response technologies and platforms (AV, EDR, MDR, XDR, families).
Experience in Intrusion Detection or Prevention Systems.
Strong Knowledge of: TCP/IP, computer networking, routing and switching.
Experience in Linux and Windows based devices at the System Administrator level.
System log forensics (Syslog, Event Viewer).
EC Council: C|HFI, ECAS or SANS: GIAC, GCFA, GCIH, GREM or other certifications are preferred.
Strong troubleshooting, reasoning and problem solving skills.
Ability and experience in writing clear and concise technical documentation.
Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web.
Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention.
(DLP), Identity and Access Management (IAM) solutions.
Knowledge of Forescout suite of security tools.
Experience with Linux, Windows and Network Operating Systems required.
Strong working knowledge of Routing and Access Control Devices required.

More Jobs at Forescout

Senior IT Support ,Technical Lead

Pune

2 - 10 yrs

INR 11 - 16 Lacs

Senior Payroll Analyst

Pune

4.0 - 8.0 yrs

INR 6 - 10 Lacs

DevOps Engineer

Pune

4.0 - 9.0 yrs

INR 15 - 20 Lacs

Senior Buyer

Pune

5.0 - 10.0 yrs

INR 5 - 9 Lacs

Manager, Order Management

Pune

8.0 - 13.0 yrs

INR 6 - 10 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.