SOC Admin

Trigent Software Private Limited

Job Location:

Mumbai - India

Monthly Salary: Not Disclosed

Posted on: 30+ days ago

Vacancies: 1 Vacancy

Job Summary

About us

Saint-Gobain world leader in the habitat and construction market is one of the top 100 global industrial groups. Saint-Gobain is present in 68 countries with 171 000 employees. They design manufacture and distribute materials and solutions which are key ingredients in the wellbeing of each of us and the future of all. They can be found everywhere in our living places and our daily life: in buildings transportation infrastructure and in many industrial applications. They provide comfort performance and safety while addressing the challenges of sustainable construction resource efficiency and climate change.

Saint-Gobain GDI Groupe (250 persons at the head office including 120 that are internal) is responsible for defining setting up and managing the Groups Information Systems (IS) and Telecom policy with its 1000 subsidiaries in 6500 sites worldwide. The GDI Groupe also carries the common means (infrastructures telecoms digital platforms cross-functional applications).

INDEC the IT Development Centre of Saint-Gobain is an entity with a vision to leverage Indias technical skills in the Information Technology domain to provide timely high-quality and cost-effective IT solutions to Saint-Gobain businesses globally.

Within the Cybersecurity Department the Cybersecurity Operations Center (CyberSOC) mission is to Identify Protect Detect and React to the cyber threats that can affect the Group. The CyberSOC teams are based out of Paris and Mumbai and consists of 90 skilled persons working in different Service Lines.

Mission

The Use-Cases Factory worker is responsible for designing implementing and managing use-cases within the CyberSOC Detect from the log integration to the incident handling playbook. This role involves creating detection and response mechanisms to identify and mitigate cybersecurity threats ensuring the organizations digital environment remains secure.

He will interact with various stakeholders who may request compliance business or threat use-cases among others. He will also liaise with the React team to ensure that the use-cases are well understood and that incidents can be effectively managed by them.

The Use-Cases Admin is responsible for:

Develop and deploy use-cases to detect security threats into our SIEM from the log collection to the incident handling playbook. Fine-tune detection rules to minimize false positives and false negatives.
Maintain detailed documentation of use-cases ensuring transparency and accountability.
Manage execution of standard procedures for the content management change management and lifecycle management of the use-cases.
Work closely with other IT and security teams to develop specific use cases and to enhance the overall security posture of the organization. Share insights and recommendations to improve overall cybersecurity posture.
Regularly review and update use-cases to adapt to the evolving threat landscape and incorporate new threat intelligence.
Manage reports dashboards metrics for CyberSOC KPIs and presentation to senior management & other stakeholders.

Skills

Bachelors degree in Computer Science Information Security EXTC or related field.
Relevant certifications (e.g. CISSP CCSP CompTIA Security) are highly desirable.
Proven experience (3 years) working within the Cybersecurity field with a focus on developing and managing use-cases.
Excellent understanding and proven hands-on experience in SIEM/SOAR concepts such as log collection correlation aggregation normalization parsing playbooks layouts.
Experience with Palo Alto XDR and/or other SIEM platforms like Sentinel Qradar Splunk ArcSight etc.
Experience with Palo Alto XSOAR and/or equivalent SOAR Platforms like Resilient Phantom etc.
Proficiency in scripting languages (e.g. Python Bash) for automation and customization of security processes is highly desirable.
Deep understanding of various cyber threats attack vectors and defense mechanisms.

Personal Skills

Has a systematic disciplined and analytical approach to problem solving.
Excellent ability to think critically under pressure.
Strong communication skills to convey technical concepts clearly to both technical and non-technical stakeholders.
Willingness to stay updated with evolving cyber threats technologies and industry trends.
Capacity to work collaboratively with cross-functional teams developers and management to implement robust security measures.

Additional Information

The position is based in Mumbai (India).

About us Saint-Gobain world leader in the habitat and construction market is one of the top 100 global industrial groups. Saint-Gobain is present in 68 countries with 171 000 employees. They design manufacture and distribute materials and solutions which are key ingredients in the wellbeing of e...