Security Incident Monitoring & Support Engineer
Posted on:
7 days ago
Vacancies:
1 Vacancy
Job Summary
JD:
Qualification: Bachelors degree in Computer Science or related field or higher
with minimum 3 years of relevant experience.
Job Description:
SOCDefenderHandled Linux logs/Commands
Or
SOC Sentinel Linux logs KQL
Skills:
. Minimum 2 years of experience in SOC
. Experience in SOC tools Ms defender and SIEM.
. Hands on experience on Linux & windows needed
. Cloud SOC experience is mandatory
. Experienced in performing technical analysis of the critical and zero-day
vulnerabilities and help in prioritization
Scope of work & Deliverables:
. 24x7 Infra Security Incident Monitoring & Response
. Incident alert monitoring ticketing & containment
. Work on critical security violations and vulnerabilities
. Support analysis & remediation of zero day vulnerabilities
. Coordinate with key stakeholders for the remediation corrective &
preventive actions
. Threat Hunting to proactively identify security incidents
. Generate weekly & monthly metrics
. Monitoring the security alerts using the NShield tools
. Coordinate with client Group Security CDC on the incident alerts
. Monitor the NSHIELD and SIEM tools availability
Acceptance Criteria:
. Complete necessary training as necessary when required
. Maintain client mandated security requirements and maintain confidentiality
for the data & product architecture
. Create Jira/SNOW tickets for each activity
. Complete the planned activities as per the agreed timelines and any delay is
reported and the mitigation plan for execution
. Able to work with cross functional teams
. Perform the necessary actions such as ticket assignment/acceptance for
alerts raise SNOW tickets update CDC update stakeholders take containment
action and close the tickets as per the defined IS-IRT SLA timelines
. Able to handle multiple tasks and prioritisation of critical tasks
. Security Incident containment/remediation support and troubleshooting
24x7(shift model)
Hybrid working in Bangalore as per the clientworking days/hours policy when
working in business hours
Remote working when working in shift outside business hours
24x7 as per the shift model
Qualification: Bachelors degree in Computer Science or related field or higher
with minimum 3 years of relevant experience.
Job Description:
SOCDefenderHandled Linux logs/Commands
Or
SOC Sentinel Linux logs KQL
Skills:
. Minimum 2 years of experience in SOC
. Experience in SOC tools Ms defender and SIEM.
. Hands on experience on Linux & windows needed
. Cloud SOC experience is mandatory
. Experienced in performing technical analysis of the critical and zero-day
vulnerabilities and help in prioritization
Scope of work & Deliverables:
. 24x7 Infra Security Incident Monitoring & Response
. Incident alert monitoring ticketing & containment
. Work on critical security violations and vulnerabilities
. Support analysis & remediation of zero day vulnerabilities
. Coordinate with key stakeholders for the remediation corrective &
preventive actions
. Threat Hunting to proactively identify security incidents
. Generate weekly & monthly metrics
. Monitoring the security alerts using the NShield tools
. Coordinate with client Group Security CDC on the incident alerts
. Monitor the NSHIELD and SIEM tools availability
Acceptance Criteria:
. Complete necessary training as necessary when required
. Maintain client mandated security requirements and maintain confidentiality
for the data & product architecture
. Create Jira/SNOW tickets for each activity
. Complete the planned activities as per the agreed timelines and any delay is
reported and the mitigation plan for execution
. Able to work with cross functional teams
. Perform the necessary actions such as ticket assignment/acceptance for
alerts raise SNOW tickets update CDC update stakeholders take containment
action and close the tickets as per the defined IS-IRT SLA timelines
. Able to handle multiple tasks and prioritisation of critical tasks
. Security Incident containment/remediation support and troubleshooting
24x7(shift model)
Hybrid working in Bangalore as per the clientworking days/hours policy when
working in business hours
Remote working when working in shift outside business hours
24x7 as per the shift model