SOC Analyst

Job Description

4.0 Year(s) To 7.0 Year(s)Job DescriptionHave experience in SOC monitoring , working knowledge in any of the SIEM tools like ArcSight , Qradar , Splunk , McAfee Nitro , AlienVault USM Anywhere .24x7 Active monitoring of Security events using SIEM (based on standard operating procedure).CCNA / Security+/ Network+ CEH certified / SIEM technology certified (optional) (ArcSight , Qradar , Splunk , McAfee Nitro).Analyst would monitor network security events and take appropriate action based on security policy.Assist with security related issues.SOC analyst is responsible for reviewing alerts.Responsible for troubleshooting agent software issues.Reviewing reports to ensure quality and accuracy is a part of the job for SOC analysts.SOC analysts also perform analysis of log files. Includes forensic analysis of system resource access.Knowledge of firewalls and intrusion detection systems is a plus for SOC analyst position.Understanding of common network services (web , mail , FTP , etc) , network vulnerabilities , and network attack patterns is a must.Strong analytical and problem solving skills are needed to perform the job of a SOC analyst.Due to the nature of the business , the SOC analyst position covers all shifts 24/7.Understand cyber - attack methods , Perform analysis of security logs in an attempt to detect unauthorized behavior , provide daily reports to Team Leader.Secondary Responsibilities:Installation , setup / configuration , troubleshooting , Tuning , diagnostics and maintenance of IT security related Equipment.Carry out proactive and reactive administration on Networking and associated applications.Ensure adherence to process.Troubleshoot performance and availability issues on security devices such as IDS , IPS , UTM , Content Filtering solutions , DLP , APT.Implement Policy Changes.Monitor alerts received from the monitoring systems and take appropriate action based on the defined processes.Resolution of problems through configuration changes/ re - installations / replacements.Follow the SLAs and procedures already defined for security device management.Procedures and KB , known incident resolution , Known Error handling.Updating Patches and Signatures Management.Analyse network traffic patterns , system logs , audit files for compliance with security policies.Ability to communicate and listen effectively.Hands on experience and ability to do Root cause analysis , Problem & Capacity Management.Inclination towards emerging technologies.Skill set:Experience in McAfee DAM / NIPS / SIEM / DDOS / Arcsight / Symantec DLP / Websense DLP / DLP / Bluecoat / Websense Proxy / Mcafee Web Security / Forcepoint / Imperva / Splunk / VAPT / Qradar / Mcafee Nitro / Mcafee ESM / Arcsight / RSA Envision.Education - BORN Group or BORN , formerly known as Group FMG , [2] is a creative design , content production and commerce solutions company. The companys offers publishers an online flat planning tool (called VIP4) for magazine , book , and catalog pre - press planning and production.It also offers frameworks to create on - line magazine production (with a product called ICE MAPP) and tablet & mobile phone apps (with a product called ICE CAPP) - both products embed rich media , e - commerce and social media in a single container. The company is a partner to ecommerce vendors such as Acquia , NetSuite , Magento , hybris (now SAP) , BigCommerce and Demandware (now Salesforce) as well as Jagged Peak Software for OMS solutions. The firm has been involved in the launch of several marketplaces and online eCommerce websites.Recruiter is interested to get potential application for this job opening.Interested Candidates are requested to and inform your interest in this job.Recruiter will proceed your potential application and will be in touch with you shortly.,

Keyskills :
siem ids ips troubleshooting rootcauseanalysis richmedia itsecurity socialmedia ts problemsolving creativedesign irewalls mobilephoneapps rootcause dailyrep netw ksecurity netw kservices securit