Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Hyderabad Jobs |
Banglore Jobs |
Chennai Jobs |
Delhi Jobs |
Ahmedabad Jobs |
Mumbai Jobs |
Pune Jobs |
Vijayawada Jobs |
Gurgaon Jobs |
Noida Jobs |
Oil & Gas Jobs |
Banking Jobs |
Construction Jobs |
Top Management Jobs |
IT - Software Jobs |
Medical Healthcare Jobs |
Purchase / Logistics Jobs |
Sales |
Ajax Jobs |
Designing Jobs |
ASP .NET Jobs |
Java Jobs |
MySQL Jobs |
Sap hr Jobs |
Software Testing Jobs |
Html Jobs |
Job Location | Pune |
Education | Not Mentioned |
Salary | Not Disclosed |
Industry | BPO / Call Center |
Functional Area | Sales / BD |
EmploymentType | Full-time |
Summary: The SOC L3 analyst prepares and manages incidents that are escalated, based on alerts and use cases. He/ she support the team by helping triage and growing team skills. He/ she ensures a high level of documentation with communication suitable to non- technical audience. On major incident, he/ she acts as incident commander and single point of contact.The SOC L3 analyst reports to the SOC manager. This role must display an in- depth understanding of new trends and technologies related to IT security and contribute to the company IT security strategy and roadmap.Responsibilities:As an active member of the team, monitor and process response for security events on a 24x7 basis. Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention). Stay current with and remain knowledgeable about new threats. Analyze attacker tactics, techniques and procedures (TTPs) from security events across a large heterogeneous network of security devices and end- user systems. Leverage automation and orchestration solutions to automate repetitive tasks. Aid in threat and vulnerability research across event data collected by systems. Investigate and document events to aid incident responders, managers and other SOC team members on security issues and the emergence of new threats. Work alongside other security team members to hunt for and identify security issues generated from the network, including third- party relationships. Seek opportunities to drive efficiencies. Evaluate SOC policies and procedures and recommend updates to management as appropriate. Adhere to service level agreements (SLAs), metrics and business scorecard obligations for ticket handling of security incidents and events. Partner with the security engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities. Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security and data networking, to offer global solutions for a complex heterogeneous environment. Maintain working knowledge of advanced threat detection as the industry evolves. Create and play scenarios for team exercises Perform other duties as assigned. A typical day:50%, preparing or managing incidents o Analyzing security alerts and events logfiles, packet captures, system logs. o Reviewing incident process and playbook o Ensuring tools are available and operational 20%, projects o Onboarding environment for production20%, improve, threat hunting, educate o Research undetected attacker o Educate and improve security awareness of internal staff o New ideas This job may not be for you.If you don t manage pressure well If you can t work on shift If you need a lot of well- established procedures and runbooks before you can make a decision QualificationsExperience working in a 24x7 operational environment, with world- wide presence preferred. Experience driving measurable improvement in monitoring and response capabilities at scale. Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/ IPS), file integrity monitoring (FIM), DLP and other network and system monitoring tools. Knowledge of a variety of Internet protocols. Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively. Certifications can be considered a plus if applicable Number of Years of Work Experience: 7Required Skills: Incident Response, Security, SIEM, Curiosity, Critical thinking, Problem- solving, WritingPreferred Skills: Sumologic, Cisco, SymantecEducation: Master s Degree or extra equivalent experience A note on experience: We understand that experience and educations come in different forms. Many skills are transferable, and passion goes a long way. We want you to show us your dedication, impact and teamwork. We want you to learn new things too.We encourage you to apply if your experience is close. Nuance offers a compelling and rewarding work environment. We offer market competitive salaries, bonus, equity, benefits, meaningful growth and development opportunities and a casual yet technically challenging work environment. Join our dynamic, entrepreneurial team and become part of our continuing success.,
Keyskills :
indows automationsystem monitoringdata loss preventionwireless securitysecurity devicesnew trendsloss preventionsecurity awarenessintrusion detecit securityservice levelcisco wirelesscritical thinking