This job ad has been posted over 30 days ago...



SOC Analyst Full-time

at Sophos in Ahmedabad (Published at 23-02-2018)

As a security company, Sophos takes its own security very importantly and has an internal IT Security team which focuses on protecting Sophos’ own systems and infrastructure.

This role is for an experienced security expert to join our Cybersecurity “Blue team”.

This a great opportunity to help secure a world-leading security company. As you’d expect you’ll be joining an organisation that takes security very seriously. You will get the opportunity to work with some world-leading experts from across the company in a fast-paced & exciting environment where security is a priority.

Skills & Experience (Essential)

Mixed skillset covering both offensive and defensive security: experience as a professional Penetration Tester and/or auditor
Experience in application security and development
Experience in working in a SOC
Experience with web application assessment, network penetration testing, and vulnerability research.
Proven Bug Bounty Hunter
Strong interpersonal & networking skills.
Proficient in English communication – verbal and written

Skills & Experience (Desirable)

Contributions to open-source security projects and/or publications.
Experience working in a global environment.
Experience presenting research material at security conferences.
Experience with VA and PT Tools
Knowledge of Sophos products.
Familiarity cloud security architectures – particularly AWS and the related tooling AWS IR

Qualifications (Essential)
Security-related professional certification (GCIH//GCIA/GMON/OSCP/OSCE/GPEN/GWEB/OSWE)
Splunk Certified Power user

As part of this role you will need to:


  • The continual-improvement of our threat hunting capabilities & tooling.
  • The efforts to research threats and attack vectors that impact Sophos’s Application and infrastructure.
  • The efforts to asses new and existing applications and system deployment for vulnerabilities and * design flaws, and be able to provide recommendations on mitigations.
  • The projects involving application analysis, testing and vulnerability hunting
  • The projects to evaluate new products and technologies such as RASP
  • The efforts to define methodologies, framework, architecture, processes and procedures for securing application infrastructure.
  • Training efforts to train development teams in secure coding.
  • The tasks to automate existing processes.

Contribute towards:
  • Our vulnerability assessment and remediation program.
  • Incident response, and support Incident manager during an incident
  • The development of security policy, standards, procedures and documentation.
  • Investigation & root cause analysis of security events & incidents escalated from our security operation centre.

  • Be able to perform static code analysis
  • Work with commercial and/or open source security assessment tools such as Burp Suite, Accunetix, nikto etc.
  • Actively hunt for threats e.g. scripting using python, powershell
  • Implementation and management of Intrusion detection systems (IDS/IPS), Firewall, VPN, and other security products like Antimalware, Antispam, Content filtering, DLP etc. Proficient with SIEM – Splunk IDS/IPS, firewall alert analysis, monitoring and auditing
  • Perform log analysis with tools like Procmon, DFIR
  • Forensics and security incident investigations.
  • Troubleshooting calls , problems, resolving L2 to L3 level of calls
  • Solely perform and manage the vulnerability management lifecycle

Recent jobs at Sophos

Viewed: 1447 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend