Jivs Archiving Sustain SOC Support - Bengaluru, Karnataka, India - DXC Technology

DXC Technology
DXC Technology
Verified Company
Bengaluru, Karnataka, India

3 weeks ago

Deepika Kaur

Posted by:

Deepika Kaur

beBee Recuiter


Description

OVF SOC ANALYST
Must have skill and knowledge of Sentinel SIEM.

Must have Working knowledge and Skill of CrowdStrike and Defender for endpoints.

Having Knowledge and working exposure of SNOW and Incident handling.

Working and exposure of fine tune and false + ve cases.

Basic knowledge of other Security tools like Azure, AD and Firewall.

Experience of handling Attacks like Ransomware, DDOS and Brute force.

Experience of Handling P1 and P2 incidents.


Essential Job Functions:

  • Individuals at this job are responsible for managing SIEM infrastructure like Micro Focus
ArcSight and Microsoft Azure Sentinel.

  • Working knowledge of Microsoft Azure cloud platform, log analytics workspaces.
  • Excellent knowledge of KQL (Kusto Query Language).
  • Writing SIEM rules (Cross device and complex correlation) to implement detection in Micro Focus ArcSight and Microsoft Azure Sentinel SIEM.
  • Creating playbooks to implement SOAR in Microsoft Azure Sentinel.
  • Integration of log sources with Azure Sentinel and ArcSight.
  • Expertise in installation/ upgradation of ArcSight ESM's, Connectors.
  • Working knowledge of ArcSight Management Centre (ArcMC).
  • Excellent knowledge of Logstash, ELK.
  • Creating and implementing logic apps in Azure Sentinel.
  • Creating workbooks to implement dashboards and apps.
  • Read coded scripts and modify and debug programs.
  • Work on various operating systems and platforms.

More jobs from DXC Technology