This job ad has been posted over 30 days ago...

60

applicants

Associate Security Analyst / Security Analyst Full-time

at Symantec Corporation in Chennai (Published at 04-09-2014)

Department Overview
Symantec Corporation Managed Security Services provides real-time, enterprise-wide protection from known and emerging threats, enabling clients to protect their information assets and demonstrate compliance with industry regulations. Symantec MSS Security Monitoring Services provide hosted log retention, security monitoring and advanced analysis, and early warning intelligence. Symantec MSS Management Services provide expertise to bolster defenses and manage security architectures for customers globally.

Job Description

The Information Security Analyst position in Symantec's Managed Security Services is responsible for assessing security threats and risks involving client infrastructure. The security analyst works within a 24x7x365 team to further support the timely delivery of monitoring services and support across multiple customers. This includes troubleshooting and resolution of security issues on behalf of clients. The security analyst works among a team of skilled analysts to address complex or difficult problems as needed.

This is a mid level position within Symantec’s Managed Security Services division that will contribute to the monitoring and protection of clients worldwide. The Security Analyst would work within a team of Security Analysts located in Chennai India to provide real time log monitoring and security incident analysis to clients. As part of the Security Incident and Analysis role, the Analyst would need to also contribute towards threat research, authoring of signatures to enhance the SOC technology platform backend detection capabilities and fine tuning MSS custom built analysis signature co-relation engine. Position requires frequent interaction with global peers and stakeholders in order to ensure alignment on deliverable. Will be responsible for Identifying Signature tuning and rule mapping, reviewing and adding local importer filters, validating the analysis detection capabilities for logs collected via Symantec Security Information Manager.

Primary responsibilities include:

• Work within established practices to triage client facing security incidents. Triage includes working within the Symantec MSS proprietary Console dashboard to validate that the incident does represent unauthorized activity (and not a false positive) and assessing potential impact of incident to client’s enterprise. Clearly document both the assessment and actions required by the client to mitigate or respond to the incident.
• Available to respond to client requests and assist with incident response activities.
• Resolve standard/routine customer issues with no guidance and complex/unusual customer issues with minimal guidance.
• Communicate effectively with variety of external customer contacts to include technical contacts and executive contacts.
• Map custom signatures to attack ID’s within rules engine to ensure accuracy of incident detection.
• Able to precisely analyze data patterns and should have detailed knowledge of varying types of zero-day Vulnerability trends, hacker exploits and forensics.
• Capable of documenting the threat for the team, authoring signatures to detect the threat and configuration changes to our detection engines.
• Capable of juggling variety of priorities and deliverable in an operational, interrupt driven environment with minimal guidance or supervision
• Ensure that client issues are resolved in a timely manner and that triage activities are being performed and meeting established performance goals. Audit incidents and follow-up with responsible analyst to provide feedback and coaching as required to deliver quality deliverable.
• Train and Mentor more junior analysts on process, incident handling techniques.

Experience: 1 to 5 years

Qualifications
• Preferred Education: Bachelor’s degree in Computer Sciences or Engineering, Advanced Computer Science degree or equivalent combination of related experience desired.
• 1-2 years of experience delivering security solutions to an enterprise or with a security services organization.
• Excellent oral and written communication skills.
• Proven technical writing experience.
• Detail-Oriented, proven attention to detail in past projects.
• Candidate must have a firm grasp on SQL technologies and database architectures.

Certifications: Any one certifications highly preferable

EC Council CEH
Comptia security+
Sans GCIA
Sans GCIH


Note: Applications have been closed.


Recent jobs at Symantec Corporation


Viewed: 2317 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend