SOC Lead

Job Description

Job Title: SOC Lead Location: Hyderabad Exp: 7+ Years Skill Req.: Splunk+ EDR+SOC Job Description: Priority Skills Must Have SOC experience - SIEM Alert triaging. Hands On experience in creating SOC Usecases. SIEM Splunk experience ( Must Have) Phishing email header analysis Experience analysing logs for indicators of compromise, collected from various network monitoring devices such as firewalls, IDS/IPS, web proxies, email filters, etc. Understanding and experience with EDR solutions Understanding of advanced attacker methodologies. Knowledge and demonstrated experience in incident response tools, techniques and process for effective threat containment, mitigation and remediation. Experience of common log management suites, Security Information and Event Management (SIEM) tools, use of "Big Data and Cloud-based solution for the collection and real-time analysis of security information. Should Have Technical understanding of common enterprise technology infrastructure, platforms and tooling, including; Windows, Linux, mainframe, infrastructure management and networking hardware. Knowledge of scripting, programming and/or development of bespoke tooling or solutions to solve unique problems. Knowledge and technical understanding of penetration testing techniques and processes. Knowledge and technical understanding of 3rd party cloud computing platforms such as AWS, Azure and GCP. Knowledge and technical understanding of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suits. Knowledge and technical understanding of common cybersecurity technologies such as; IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, Client, etc.