Sr. Security Analyst - SIEM

Summary:
Sr. SOC technologies and Management, shall be responsible for ensuring the day-to-day operations and maintenance of the organization's security. Strengthen security posture and ensure the control  effectiveness of security systems within an organization.Collaborate with diverse teams to ensure the seamless functioning of the Solutions, optimization of the security infrastructure and controls.

1..Sound experience in managing SOC technologies and operations in a large and complex environment.
2.Should have sound understanding & knowledge of various SOC technologies & techniques like SIEM, SOAR, UEBA, NBAD, Threat Intel, Deception etc. 3. Should have hands on experience on SOC platform administration, LOG Source integration, Playbook, Usecase engineering, incident response techniques and technologies. Finetune, configuring and thresholds for SIEM and vulnerability tools. 4.Should have knowledge & understanding of IT infrastructure & networking technologies, operations and security principles. Ability to analyze endpoint, network, and application logs. Knowledge of various security methodologies and technical security solutions.  5. Should prepare and implement the use cases for SOC monitoring team able to provide proactive “threat hunting” to detect incidents. 6.Should have sound understanding about Threat Hunting, Mitigation and Response. 7.Strong understanding of Regulatory security guildelines & master directions and security frameworks such as ISO 27001, NIST, or CIS. 8. Should be well versed with ITIL and ITSM practices

Skills:
1. Exceptional analytical, conceptual thinking, Troubleshooting and problem-solving skills. 2. Strong leadership, negotiation, and conflict resolution skills. 3. Detail-oriented with a focus on quality and accuracy in project/service deliverables 4. Should have strong written, verbal and presentation skills.  5. Ability to perform under pressure, influence stakeholders and work closely with them to determine acceptable solutions. 

1. Ensure the day-to-day operations and maintenance of the organization's cyber security infrastructure and controls to protect systems, networks, and data. 
2.Configuration, Monitoring & Troubleshooting of Antivirus, EDR, XDR, DLP, APT, Sandboxing, Secure Proxy, Endpoint Security, PIM,HIPS, FIM,MDM, Laptop/Desktop Encryption etc. 3.Handling Shift Operations across 24x7 4.Prepare HLD & LLD, generate configuration template etc for changes. 5. Ensure coverage and effectiveness of Security Solution across the Organisation. 6. Ensure optimum security, availability, performance, and capacity of security solutions under management. 7.Ensure & maintain up-to-date documentation - SOPs, Architecture digrams etc. to remove dependency on people 8. Implement configuration changes and deployments according to established change management processes, ensuring minimal disruption and adherence to best practices. 9. Ensure hardening, latest stable version and security patches of security devices and solutions 10. Track EOL/EOS and ensure that there are no technology obsolescence. 11. Ensure resolution of incidents and outages, coordinating with internal teams and external vendors to restore service within agreed-upon SLAs. 12.Follow escalation process for smooth operations of security solutions. 13.Ensure relevant processes are followed for change, incident & daily operations. 14.Publish the relevant dashboards and status updates. 15.Remain current with organizations security policies, latest security advisories/threats, industry best-practices and developments in cyber security, and recommend and implement best practices and technologies to mitigate emerging threats.