Bengaluru - Qualitest
Description
Expectations:
Exp 3-5 years SOC Engineer will be responsible for monitoring, reporting, and escalating events to our SOC Leads.
The primary function of this position is to monitor the analytics tools, perform alert management, and initial incident qualification.
This role reports to the SOC Team Lead.
Bachelor's degree with CEH certification
Acknowledge, analyse, and validate incidents triggered from correlated events through SIEM solution
Collection of necessary logs that could help in the incident containment and security investigation
Escalate validated and confirmed incidents to SOC Lead
Undertake first stages of false positive and false negative analysis
Open incidents in ITSM Platform to report the alarms triggered or threats detected.
Analyst should properly include for each incident on SIEM all details related to the logs, alarms and other indicators identified in accordance with the intervention protocol and the SLA.
Track and update incidents and requests based on client's updates and analysis resultsReport infrastructure issues to the IT support team.
Other duties related to the position Essential Skills
Knowledge and hands-on experience in the management of McAfee EDR, CrowdStrike, ENS, and other security products
Experience in Security Information Event Management (SIEM) tools like LogRhythm and McAfee, creation of basic co-relation rules, and administration of SIEM
Should have expertise on TCP/IP network traffic and event log analysis
Knowledge of ITIL disciplines such as Incident, Problem and Change Management
Requirements:
Expectations:
Exp 3-5 years SOC Engineer will be responsible for monitoring, reporting, and escalating events to our SOC Leads.
The primary function of this position is to monitor the analytics tools, perform alert management, and initial incident qualification.
This role reports to the SOC Team Lead.
Bachelor's degree with CEH certification
Acknowledge, analyse, and validate incidents triggered from correlated events through SIEM solution
Collection of necessary logs that could help in the incident containment and security investigation
Escalate validated and confirmed incidents to SOC Lead
Undertake first stages of false positive and false negative analysis
Open incidents in ITSM Platform to report the alarms triggered or threats detected.
Analyst should properly include for each incident on SIEM all details related to the logs, alarms and other indicators identified in accordance with the intervention protocol and the SLA.
Track and update incidents and requests based on client's updates and analysis resultsReport infrastructure issues to the IT support team.
Other duties related to the position Essential Skills
Knowledge and hands-on experience in the management of McAfee EDR, CrowdStrike, ENS, and other security products
Experience in Security Information Event Management (SIEM) tools like LogRhythm and McAfee, creation of basic co-relation rules, and administration of SIEM
Should have expertise on TCP/IP network traffic and event log analysis
Knowledge of ITIL disciplines such as Incident, Problem and Change Management
Benefits:
Why QualiTest?
Have continuous access to and work with Senior Testing Specialists and Practice Experts
Be a part of a leading testing company, globally recognized as a Visionary by Gartner Magic Quadrant
Work with cutting edge technology in a company built by testers for testers, this is what we do
As a global company, we offer unique placement opportunities around the world
Our QualiTesters are the reason for our success, we constantly encourage career development and promote from within
Intrigued to find more about us?
If you like what you have read, send us your resume and let's start talking
More jobs from Qualitest
-
8117 - Test Automation - #2
Noida, India - 1 week ago
-
10010#1-devops Architect
Bengaluru, India - 6 days ago
-
9969 #3
Bengaluru, India - 1 week ago
-
11765 #1 Functional Testing, Api Testing, Postman
Bengaluru, India - 5 days ago
-
Bengaluru
Bengaluru, India - 1 week ago
-
9180 #1
Bengaluru, India - 1 week ago