Security Analyst

Job Description - Responsible for monitoring, investigating, analyzing, and remediating cybersecurity alerts on SIEM platforms. Work with the team to resolve alerts and escalate as needed. Also act as the technical SME and shall report technically to the Admin and SOC Manager.

Roles And Responsibilities -

• Monitor for attacks, intrusions and unusual, unauthorized on QRadar
• Investigate security alerts and provide incident response using incident handling methodologies and best practices.
• Track incident detection and closure, conduct incident response coordination with customer
• Follow up with the recommendations to the client to contain an incident or mitigate a threat
• Set up weekly meeting to review the weekly reports with the client and respond to clients requests, concerns and suggestions
• Guide assist L1 analyst for incident response resolution as applicable
• Responsible for shift handover documentation
• Track SOC performance in terms of SLAs and incident quality
• Generate scheduled / Ad-hoc reports on demand
• Assist other security teams to pinpoint cause and do impact analysis
• Fine tune the Correlation rules for reducing false positive alerts.
• Conduct training on QRadar with our team and customer (if required) on regular basis
  
  

Skills Required :-

• Strong knowledge and hands-on experience with QRadar.
• Strong knowledge of cybersecurity principles and threat landscape.
• Intermediate level of knowledge of networking, the internet, and protocols.
• Knowledge of ITIL disciplines such as Incident, Problem and Change Management
• Basic knowledge about the functionality of other security platforms like firewall, IPS\IDS, EDR, Antivirus etc.
• Bachelors degree in Engineering, Computer Science, Information Security, or Information Systems with relevant security engineering certifications
  
  

Desirable: CEH, AWS , CCSP etc. Certifications

This job is provided by Shine.com