Promaynov Advisory Services Pvt. Ltd
Website:
promaynov.com
Job details:
Please find below job details :
Role : Security Operations Center Analyst
Experience : 4+ years
Location : Gurgaon / Bangalore
Working Mode : Hybrid
JOB DESCRIPTION :
How will you contribute?
As a member of the team, you will:
- Responsible for working in a global 24x7 Security Operation Center (SOC) environment which consists of an in-house and outsourced SOC.
- Able to participate on an on-call rotation.
- Perform real-time alert monitoring and risk mitigation.
- Provide analysis and trending of security log data from a large number of heterogeneous security devices across different layers.
- Provide Incident Response (IR) support when analysis confirms actionable incident from the outsourced SOC and internal systems.
- Provide threat and vulnerability analysis as well as security advisory services.
- Analyze and respond to previously undisclosed software and hardware vulnerabilities.
- Investigate, document, and report on information security issues and emerging trends.
- Integrate and share information with other analysts and teams.
- Participate in security projects and assist network operations and engineering teams.
- Other tasks and responsibilities as assigned through ticketing system.
Qualifications :
- Bachelor's degree in a related field (Security, Forensics or Computer Science is preferred)
- At least 4 years of experience as a security analyst, incident handler/responder, security engineer or penetration tester.
- Excellent knowledge of security methodologies, processes (like Kill chain/diamond models and MITRE ATT&CK framework).
- Excellent knowledge of technical security solutions (firewalls, SIEM, NIDS/NIPS/HIDS/HIPS, AVs, DLP, proxies, network behavioral analytics, endpoint and cloud security).
- In depth knowledge of TCP/IP, UDP, DNS, FTP, SSH, SSL/TLS and HTTP Protocols, network analysis, and network/security applications.
- Very good knowledge of common malware threats and attack methodologies.
Professional Certifications: GCIA, GCIH, GCFE, GCFA, Security+, CCNA CyberOps, OSCP, GPEN, GWAPT, CEH, CISSP or other equivalent certifications are highly desirable.
Click on Apply to know more.