SOC Services Specialist

LTTS India

Mumbai

________________________________________
Job Description: SOC Services Specialist - L1 Role Overview: As an SOC Services Specialist, you will be an integral part of our Security Operations Center (SOC) team. Your primary responsibility will be to provide 24/7 support for security monitoring, incident analysis, and customer interactions. You'll play a critical role in ensuring the security and resilience of Maharashtra Cyber's systems. Responsibilities: 1. Eyes on Glass Monitoring: o Continuously monitor security alerts and events using SIEM (Security Information and Event Management) tools. o Detect and analyze potential security incidents in real-time. o Escalate critical incidents to higher-level analysts or incident responders. 2. Incident Intake and Analysis: o Receive and triage security incidents reported by various sources (e.g., alerts, users, automated systems). o Analyze incident details, assess impact, and determine appropriate actions. o Collaborate with incident response teams for further investigation. 3. Incident Notification and Customer Interactions: o Notify relevant stakeholders (internal teams, management, customers) about security incidents. o Provide timely updates on incident progress and resolution. o Maintain clear communication channels with affected parties. 4. Initial Support for EDR / DLP / PAM / IDAM: o Provide initial support for security tools such as Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Privileged Access Management (PAM), and Identity and Access Management (IDAM). o Assist in troubleshooting and resolving issues related to these tools. o Collaborate with specialized teams for advanced support. Qualifications:

• Education: Bachelor's degree in Computer Science, Information Security, or related field.
• Certifications (Preferred):

o CompTIA Security+
o Certified SOC Analyst (CSA) o Any relevant entry-level security certifications.

• Experience:

o Minimum of 3 to 5 years of experience in security operations or related roles.
o Familiarity with SIEM tools and incident handling processes. o Basic understanding of EDR, DLP, PAM, and IDAM concepts. o Strong communication skills and ability to work in a team. Additional Information:

• This role operates on a 24/7 basis, including weekends and holidays.
• You will collaborate closely with other SOC analysts, incident responders, and IT teams.
• Applicant must be willing to sign an NDA, and undergo security verification, including police verification.
• Applicant must be an Indian national.
• The role is primarily on-premises only, with limited remote support.
• Attention to detail and the ability to work under pressure are essential.

________________________________________

2. Incident Intake and Analysis:,1. Eyes on Glass Monitoring,3. Incident Notification and Customer Interactions,4. Initial Support for EDR / DLP / PAM / IDAM