HamburgerMenu
hirist

Artificial Intelligence

Machine Learning

NLP

Generative AI

Predictive Modeling

Query Segmentation

AI Interface

LLM

Deep Learning

MLOps

Security Architect - AI

Cloud Architect - ML/AI

Data Scientist

Data Modeling

Data Analytics & BI

Data Engineering

Backend Development

Frontend Development

Full Stack

Mobile Applications

Emerging Technologies

DevOps / SRE

CyberSecurity

Quality Assurance

Platform Engineering / SAP/Oracle

Product Management

Business Analysis and Project Management

UI & Design

Semiconductor/VLSI/EDA

Others

Alstom - L1 Support Operation Analyst - SIEM

Alstom Transport India Ltd.
Bangalore
3 - 6 Years
IT OperationsSecurity Operations CenterSIEMISONISTSLAMalwareCISSPTechnical Support

Posted on: 08/12/2025

Job Description

Key Responsibilities :


Security Operations :


- Work across multiple shifts to ensure 24/7 security monitoring and incident response.

- Oversee threat detection and response using SIEM, NIDS, and endpoint protection platforms.

- Administer and maintain Trellix ePO for endpoint security and policy enforcement.

- Monitor and manage alerts from Network Intrusion Detection Systems (NIDS).

- Coordinate incident tracking and resolution using ServiceNow.

- Collaborate with IT and facilities teams via Maximo for infrastructure-related security events.

Governance & Compliance :

- Ensure SOC operations align with internal policies and external regulatory requirements (e., ISO 27001, NIST, GDPR).

- Maintain and update SOC playbooks, SOPs, and escalation matrices.

- Participate in internal and external audits, ensuring readiness and compliance.

Reporting & Metrics :

- Generate and present regular reports on SOC performance, incident trends, and threat landscape.

- Track and report KPIs such as MTTR, false positive rates, analyst efficiency, and SLA adherence.

- Provide executive-level summaries and dashboards for senior leadership and governance forums.

Continuous Improvement :

- Drive automation and optimization of SOC workflows and alert triage.

- Collaborate with threat intelligence, IR, and vulnerability management teams to enhance detection capabilities.

- Evaluate and recommend new tools and technologies to improve SOC effectiveness.

Required Qualifications :

- Bachelors or Masters degree in Cybersecurity, Information Technology, or related field.

- Minimum 3 Years Of Experience In SOC Operations.

- Strong experience with SIEM platforms, Trellix ePO, NIDS, ServiceNow, and Maximo.

- Solid understanding of incident response, malware analysis, and threat intelligence.

- Excellent leadership, communication, and analytical skills.

- Relevant certifications such as CISSP, CISM, GCIA, GCIH, CEH, or equivalent is preferrable.

Preferred Qualifications :

- Experience with cloud security monitoring (AWS, Azure, GCP).

- Familiarity with MITRE ATT&CK framework and threat modeling.

- Knowledge of scripting and automation (Python, PowerShell).

- Experience working with SOC operations in a hybrid or global environment.


info-icon

Did you find something suspicious?

Posted by

Alstom Transport India Ltd.

TA Head at Alstom Transport India Ltd.

Last Active: 9 Dec 2025

Job Views:  
11
Applications:  7
Recruiter Actions:  0

Posted in

CyberSecurity

Functional Area

Technical / Production Support

Job Code

1586758

Jobs by location

Interview Questions for you

View All
Blog for regisnation

How to Write Leave Application for Urgent Work: Format & Samples (2025)

Blog for regisnation

Top 90+ Machine Learning Interview Questions and Answers

Blog for regisnation

Top 40+ Deep Learning Interview Questions and Answers