JD - SOC Analyst
We are looking for SOC -Intern
Essential Responsibilities:
• Splunk Deployment
• Splunk implementation and configuration
• Correlation rules
• Performance Optimization / Performance Tuning
• Monitors alerting tools and also handles escalated incidents from the Helpdesk, Physical Security, Network Team, and Customers.
• Triages alerts as they come in and act appropriately.
• Respond to common alerts in a consistent and repeatable manner from multiple alerting sources.
• Responsible for triage of a variety of alerts stemming from C2 beaconing, malware, or phishing attempts.
• Provide escalations of unknown threats to Level 2.
• Identify abnormal security events and trigger the call list/distribution list.
Qualifications/Requirements:
• Minimum IT Diploma Holder or equivalent.
• Ability to work in rotating shifts and also be on-call outside of shift hours on a regular and recurring basis.
• Possess personal and professional integrity. Individuals will be required to submit to a background examination.
• Good oral and written communication skills.
• Possess a desire to solve problems logically.
Desired Characteristics:
• Ability to perform logical problem-solving.
• Possess a basic understanding of enterprise-grade technologies including operating systems, databases, and web applications.
• Ability to read and understand primary system data including security event logs, system logs, application logs, and network traffic.
• Demonstrate understanding of basic internet traffic concepts (e.g. DNS, HTTPS, HTTP).
• Network infrastructure knowledge (e.g. router, switch, firewall).
• Security best practices for operating systems such as Microsoft Windows or Redhat.
• Experience working in high-performing teams and understanding the dynamics of teamwork in a SOC environment.
Desired Characteristics:
• Ability to perform logical problem-solving.
• Possess basic understanding of enterprise grade technologies including operating systems, databases and web applications.
• Ability to read and understand basic system data including security event logs, system logs, application logs, and network traffic.
• Demonstrate understanding for basic internet traffic concepts (e.g. DNS, HTTPS, HTTP).
• Network infrastructure knowledge (e.g. router, switch, firewall).
• Security best practices for operating systems such as Microsofot WIndows or Redhat.
• Experience of working in high performing teams and understand the dynamics of teamwork in a SOC environment.
About TechDefence.
Techdefence Labs is Information Security Consulting Company based out of Ahmedabad with 200+ Customers on Board. We master into Cyber Security Assurance & compliance program, Threat and vulnerability Management and Security Operation Center Services.
