JD - SOC Analyst
We are looking for SOC -Intern
Essential Responsibilities:
Splunk Deployment- Splunk implementation and configuration
- Correlation rules
- Performance Optimization / Performance Tuning
- Monitors alerting tools and also handles escalated incidents from the Helpdesk, Physical Security, Network Team, and Customers.
- Triages alerts as they come in and act appropriately.
- Respond to common alerts in a consistent and repeatable manner from multiple alerting sources.
- Responsible for triage of a variety of alerts stemming from C2 beaconing, malware, or phishing attempts.
- Provide escalations of unknown threats to Level 2.
- Identify abnormal security events and trigger the call list/distribution list.
Qualifications/Requirements:
Minimum IT Diploma Holder or equivalent.- Ability to work in rotating shifts and also be on-call outside of shift hours on a regular and recurring basis.
- Possess personal and professional integrity. Individuals will be required to submit to a background examination.
- Good oral and written communication skills.
- Possess a desire to solve problems logically.
Desired Characteristics:
- Ability to perform logical problem-solving.
- Possess a basic understanding of enterprise-grade technologies including operating systems, databases, and web applications.
- Ability to read and understand primary system data including security event logs, system logs, application logs, and network traffic.
- Demonstrate understanding of basic internet traffic concepts (e.g. DNS, HTTPS, HTTP).
- Network infrastructure knowledge (e.g. router, switch, firewall).
- Security best practices for operating systems such as Microsoft Windows or Redhat.
- Experience working in high-performing teams and understanding the dynamics of teamwork in a SOC environment.
Desired Characteristics:
- Ability to perform logical problem-solving.
- Possess basic understanding of enterprise grade technologies including operating systems, databases and web applications.
- Ability to read and understand basic system data including security event logs, system logs, application logs, and network traffic.
- Demonstrate understanding for basic internet traffic concepts (e.g. DNS, HTTPS, HTTP).
- Network infrastructure knowledge (e.g. router, switch, firewall).
- Security best practices for operating systems such as Microsofot WIndows or Redhat.
- Experience of working in high performing teams and understand the dynamics of teamwork in a SOC environment.
About TechDefence.
Techdefence Labs is Information Security Consulting Company based out of Ahmedabad with 200+ Customers on Board. We master into Cyber Security Assurance & compliance program, Threat and vulnerability Management and Security Operation Center Services.
