SOC Analyst

As our Security Incident Responder you will be part of a fast-paced Global SOC team and cover broad aspects of Temenos Cyber security monitoring and incident response operations. Working closely with SOC Manager and Cyber Security Engineers, the role is to help coordinate and report on cyber incidents affecting Temenos on-premises and Cloud infrastructure and Temenos application suite. This role requires strong technical analytical skills while providing accurate analysis of security-related problems and a well-rounded networking background. It also involves critical duties and responsibilities to be performed during crisis and contingency operations, which may necessitate extended hours of work.

• You will be responsible for working in a 24x7 Security Operation Center (SOC) environment.
• You will participate in security incident response efforts, having knowledge of common security exploits, vulnerabilities and countermeasures.
• You will digital forensics and malware analysis.
• You will coordinate with Security System engineers and Threat Intel engineers to continuously improve the accuracy and efficiency of the Security monitoring and response process.
• You will Investigate, document, and report on information security issues and emerging trends that affect Temenos on-premises and Cloud based platforms.
• You will correlate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.
• You will technical expert and liaison to law enforcement and executive personnel and explain incident details as required.
• You will write and publish cyber defense techniques, guidance, incident findings, and after-action reviews to constituents.
• You will propagate a risk based, business focused cyber security approach in all activities.
• You will deliver regular and consistent KPI/KRIs on the security monitoring activities.
• You will remain current on security industry events, threats and impacts on new technology.

• You should have bachelor's degree in BE/B.Tech.
• You should have 5+ years of working experience in Security Incident Response.
• You should have strong knowledge of networking topologies and technologies, including firewalling, routing and switching, web traffic.
• You should have strong knowledge of Operating Systems (Windows, Linux, UNIX).
• You should have solid understanding of current cyber-attack tactics/techniques and mitigation solutions.
• You should have experience with network and host-based intrusion detection and prevention systems.
• You should have knowledge on one or more SIEM tools, such as Splunk, Sentinel.
• You should have previous experience in creating heuristic detections, correlation searches in SIEM tools (QRadar, Arcsight, Sentinel, Splunk, etc)
• You should have strong analytical skills and Security Incident Response knowledge.
• You should have exposure to handling Security Centre alerts in cloud (Azure or AWS) and ability to communicate security issues to peers and management.
• You should have industry certifications & qualifications from recognized training providers – ISC2, ISACA, SANS, EC-Council can be a plus.

• Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month
  
• Civil Partnership: 1 week of paid leave if you're getting married. This covers marriages and civil partnerships, including same sex/civil partnership
  
• Family care: 4 weeks of paid family care leave
  
• Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge
  
• Study leave: 2 weeks of paid leave each year for study or personal development