25

applicants

Walk- in Interview for SOC Trainee Executive - Pune Full-time

at SI Consult in Pune (Published at 09-01-2020)

We are organizing Walk - in for Security Associate Profile on 14th Jan 2020 at 11 AM in our premises:

Si Cyber
Si Corporate office (Secintel Consult Technology Pvt ltd)
Supreme Headquarters Building,
Office 807-810, Survey No. 36, Pune-Bangalore Highway,
Baner, Pune 411045, India.

Please go through our company profile below:-

Si is a leading Managed Security Services Provider and we are driven by a desire to offer our clients the highest degree of protection against today’s cyber threats. We protect our clients 24 x 7 and we combine people, technology and processes to deliver a true enterprise grade experience to our clients. For more information kindly visit to company Website -https://www.siconsult.com/
Kindly acknowledge.
Kind Regards,


Job Description :
We are searching for a Security Associate SOC to assist our 247 managed security operations center. The position would comprise the following:
Undergoing training for 6 months to learn security monitoring concepts, primary analysis of the logs, network concepts, handling customer calls, etc.
Assisting our security engineers in their day-to-day functions as detailed within the Responsibilities section of this document
This role reports to the SOC Team Lead.
Responsibilities :
Acknowledge, analyse and validate incidents triggered from correlated events through SIEM solution
Acknowledge, analyse and validate incidents received through other reporting mechanisms such as email, phone calls, management directions, etc.
Collection of necessary logs that could help in the incident containment and security investigation
Escalate validated and confirmed incidents to SOC Analyst
Undertake first stages of false positive and false negative analysis
Understand the structure and the meaning of logs from different log sources such as FW, IDS, Windows DC, Cisco appliances, AV and antimalware software, email security etc.
Understand the subject of Carbon Black alarms
Open incidents in SecurityHQ (ITSM Platform) to report the alarms triggered or threats detected. Analyst should properly include for each incident on SecurityHQ all details related to the logs, alarms and other indicators identified in accordance with the intervention protocol of each client and the SLA.
Track and update incidents and requests based on clients updates and analysis results
Properly log client requests and change requests in SecurityHQ
Report infrastructure issues to the SI support team.
Report false positive alarms from Carbon Black and LogRhythm to L2 analysts
Generate weekly reports from LogRhythm platform and send it to L2 for review
Other duties related to the position
Essential Skills
Certifications: CCNA or CEH
Should have knowledge in Linux and Windows.


Viewed: 387 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend