soc l3 - Bengaluru, Karnataka, India - DXC Technology

DXC Technology
DXC Technology
Verified Company
Bengaluru, Karnataka, India

1 week ago

Deepika Kaur

Posted by:

Deepika Kaur

beBee Recuiter
Description

SOC Senior Analyst with very good experience on carrying out in-depth analysis and investigation of a security alert / incident, able to create run book and playbook, work on creation of new analytics as per requirement of client environment.

CSOC / SIEM detection development and thereat hunting

Develop threat/attack models to depict and model detection of known attack vectors.

Work with Threat Intelligence, Incident Response and Cyber Orchestration teams to priorities and develop detection and orchestration capability

Work with the Red Team to actively test and validate detection capabilities.

  • Perform triage of all escalations from the SOC, tier 1 triage of all alerts that are directly monitored, and work with Security Engineering for all escalations beyond the Security Operations team.
  • Monitor multiple security alert sources, eliminate false positives from Symantec SIEM, based on the impact and nature of the Security incident triage significant security events, and escalate according to the established procedures.
  • Review automated daily security events, identify anomalies and escalate critical security events to the appropriate IT Team and follow up as required.
  • Working knowledge of SIEM (Sentinel, ArcSight and Splunk)
  • Working knowledge of MDE, CB, Azure and Crowd strike
  • Good understanding of MITRE ATT&CK framework Threat Hunting, Incident Detection and Response
  • Exposure of Documentation like Handover, Playbook, MOM and tracker etc.
  • Identify trends and derive requirements aimed at improving and enhancing existing approach.
  • Perform routine (daily, weekly, monthly, quarterly, & yearly) reporting on our security events.
More jobs from DXC Technology
See all jobs of DXC Technology