IT Security Engineer

Description : We are hiring for Cyber SOC Analyst role for US client based out Gurgaon.

Location : Gurgaon

Budget : Best in industry + Medical Insurance + Other benefits (Shift Allowances & Internet Allowance)

Shift : Flexible Shift

Work from Office

Contract Tenure : 2 years (contract tenure is of 2 years or can be an FTE of Client on the basis of performance)

Key Responsibilities/Skills Required :

Role Role/Responsibilities :

US client is looking for a Cybersecurity Analyst to join its growing organization and be part of its in-house Security Operations Centre (SOC). This is a position requiring a good technical background in Information Security practice, good knowledge of IT Security threats and solid communication and organizational skills. The successful candidate is very motivated and willing to take on challenges, able to multi-task to succeed and has the ability work with the team to tackle incoming alerts.

The Information Risk & Security team sets strategic direction for security within the organization and aligns with stakeholders throughout the company.

The Cybersecurity Analyst will be responsible for handling, and escalation of, alerts which require technical triage and analysis. This may include web attacks, malware infections, and phishing campaigns, which have been identified by the Information Risk & Security team's technology stack.

Functional Responsibilities :

- Experience Monitoring SIEM solutions and a variety of other security devices found in a SOC environment (e.g. Behavioral Analytics tools, IDS/IPS, log management tools, and security analytics platforms.

- Creating and maintaining documentation for security event processing.

- Acknowledge and handle the incoming security alerts.

- Use the internal ticketing system and dashboards to update the tickets/alerts accordingly and escalating them to the appropriate teams if necessary.

- Assist the Incident Response team on alerts escalated to them by the SOC team.

- Develop/Update and follow Standard Operating Procedures (SOPs) and Playbooks to handle standard and out-of-band alerts.

- Report to the Incident Response Team quickly and efficiently regarding urgent matters.

- Ensure ticket queues are always within satisfactory limits and all tickets are updated.

- Provide On-Call Support for emergency or high severity issues.

- Liaise with partner teams and end-users for security related tickets and activities.

Qualifications Minimum education and work experience required for this position include :

- Excellent verbal and written communication skills.

- Excellent analytical and problem-solving skills required.

- Minimum of 2+ years of experience in a SOC or Cybersecurity.

- Equivalent Certifications (Network+, Security+, CySA+, GSEC, GMON, etc.)

- Experience working with SIEMs and evaluating SIEM alerts.

- Experience leveraging core security and infrastructure technologies during investigations (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS/IDS)

Key Competencies :

- Ability to think with a security mindset. The successful candidate has a good IT background with good level knowledge of multiple relevant security practice areas (anti-malware solutions, patch and vulnerability management, network security; monitoring; endpoint, etc.)