Security Analyst

Description

Position Title : Security Analyst, Security Operations

Location : Bangalore, India

Purpose/General Summary

Security Analyst

Principal Duties & Responsibilities

• Continuously monitor networks, systems, and applications for security threats using security tools like Security Information and Event Management systems - SIEM
• Analyse security alerts, logs, and network traffic to detect potential vulnerabilities or malicious activities.
• Monitor and analyse reported phishing emails from end users.
• Proactively search for signs of malicious activity across endpoints, logs and network traffic using threat intelligence sources.
• Research new attack behaviours and TTPs used by threat actors, leading to new hunting and detection opportunities.
• Represent Threat hunting to the wider information security team, and to the senior stakeholders.
• Investigate suspicious activity and escalate incidents as necessary.
• Respond to security incidents, including malware infections, data breaches, and unauthorized access.
• Contain, mitigate, and recover from security incidents to minimize damage.
• Conduct post-incident reviews and provide recommendations to prevent recurrence.
• Work with vulnerability assessment team on remediating security findings on VS networks, systems, and applications.
• Work with IT teams to ensure vulnerabilities are patched and system weaknesses are addressed.
• Work with penetration testing team to identify risks and improve security posture.
• Ensure that security tools are up to date and properly configured to detect and prevent threats.
  

• Assist in managing and deploying encryption, access controls, and identity management systems
• Create detailed reports on security incidents, vulnerabilities, and remediation efforts.
• Document security policies, procedures, and best practices to ensure consistent implementation.
• Prepare regular security status reports for management and stakeholders
• Assist in ensuring that the organization complies with relevant security standards and regulations (e.g., GDPR, HIPAA, PCI-DSS).
• Support audits and assessments of the organization’s security practices.
• Help identify risks and provide input into security risk assessments and mitigation strategies.
• Strong analytical skills to identify security threats from log files, traffic, and alerts.
• Ability to respond swiftly to security incidents and apply critical thinking to mitigate threats.
  

Qualifications

JOB SPECIFICATIONS (Qualification & Job Experience)

Education & Skills

• Bachelor’s Degree in Information Technology, Information Security or equivalent experience in technology.
• Strong knowledge of networking protocols (TCP/IP, DNS, HTTP) and operating systems (Windows, Linux).
• Proficiency in programming and scripting languages such as Python, Bash, or PowerShell
• Proficiency / certifications in SIEM tools like – Splunk, Google Secops, CrowdStrike EDR etc.
  

Work Expérience

• Proven experience supporting SOC environments with experience ranging from 3-5 years.
• Experience with working on multiple SIEM tools and log analysis solutions
• Understanding of networking concepts and security tool infrastructure
• Exceptional communication and interfacing skills with technical and non-technical audiences
• Querying skills and log analysis.
• Strong analytical and critical thinking skills, with the ability to analyse complex data sets and identify actionable insights.
• Proficiency in using threat intelligence platforms, open-source tools and SOC technologies SIEM, EDR, etc.