TC-CS-Cyber Detection and Response-MDR SecOps-Senior

Job Description

Security Analyst will be responsible to identify, troubleshoot and resolve security alerts for our clients through EY s cyber security monitoring services using industry and priority systems. This role will require the analyst to work with a strong team of Cyber security professionals and be the second line of defense for EY s clients through using specialist SIEM, threat intelligence and other tools that will be monitored 24 hours, 7 days a week.. Improving overall customer relations through technical delivery and communications skills. The Analyst role is a shift role that offers unique flexible working hours and life balance Essential Functions of the Job Operate as second level support to a 24x7 managed security operations centre Alert clients regarding intrusions and potential intrusions that may compromise their network infrastructure. Maintain an inventory of the procedures used by the SOC and regularly evaluate the SOC procedures and add, remove, and update the procedures as appropriate Takes a proactive role in the resolution of incidents, even after they are escalated Work on assigned ticket queue Understanding and exceeding expectations on all tasked SLA commitments Track and report on closure of tickets as per SLAs Escalating issues to Level 2 or Level 3 and management when necessary Providing daily and weekly reports on security and vulnerability incidents Working in shift teams Analytical/Decision Making Actively investigates the latest security vulnerabilities, advisories, incidents, and penetration techniques and notifies clients when appropriate Recognizes successful intrusions and compromises through review and analysis of relevant event detail information Assist in incident determination, ticketing and incident response, prevention and remediation Knowledge and Skills Requirements Excellent team work, passion and drive to succeed and combat Cyber threats Knowledge of SIEM technologies and platforms such as Splunk, ELK, QRadar or others Threat Intelligence / feeds platform integration in SOCs Thorough knowledge of how the systems support Security Monitoring for the Analysts Cyber Incident Response In depth Desktop OS and Server OS knowledge Strong analytical and problem solving skills Network monitoring technology platforms such as Fidelis XPS, RSA or others End point protection tools, techniques and platforms such as CarbonBlack, Symantec, McAfee or others Internationally recognized technical certifications in relevant areas Hands-on experience with TCP/IP, security concepts, WAN and LAN concepts, Routing Protocols, Firewall Security policies Supervision Coordinate escalations and collaborate with internal technology teams to ensure timely resolution of issues Other Requirements Should be willing to work in shifts (24/7) Job Requirements Education B. Tech./ B.E. candidate with Basic networking skills Experience At least 2 -3 years of experience working in SOC environment Certification Requirements CCNA CCSA,CEH, CCNA Security - Preferred