HCL CSFC provides a superior foundation for building a professional career - a place for people to learn to achieve and grow. A philosophy that balances personal lifestyles perspectives and needs is an important part of our culture.
HCL CSFC is looking for an experienced SOC Analyst professional to join its team.
Candidate Persona
Ability to work with very large and complex network.
Self-motivated individual and creative thinker who will take ownership of tasks and projects able to work with the team and manages tasks effectively and has a proven track record of consist and organized outputs.
The ideal candidate will demonstrate an eagerness to understand complex problems and requirements an aptitude for translating these problems into workable designs and solutions and will possess a keen eye for detail.
Tines is a no-code SOAR (Security Orchestration Automation and Response) platform built specifically to help SOC teams automate repetitive tasks route alerts and orchestrate complex incident response workflows without needing heavy software engineering.
Core Capabilities for SOC Teams:
Endpoint Detection and Response (EDR)
Intelligent Workflows: Build end-to-end Stories (automated workflows) ranging from fully autonomous agentic responses to human-in-the-loop approvals.
Vendor Agnosticism: Integrates via APIs with almost any tool in your security stack (SIEM EDR Cloud platforms LLMs or internal tools).
Assisted Operations: Leverage AI-driven chat features and workbenches directly in the platform to query data summarize tickets and determine safe actions.
Framework Alignment: Tines is designed around the SOC Automation Capability Matrix (SOC ACM) allowing teams to systematically classify and mature their automation programs
Skills Required 8 years for L3
Having knowledge / experience on any SIEM tool (preferably SPLUNK) and SOAR tools ( preferably TINES).
Exposure to Mitre framework and equivalent Hands-on experience in EDR platforms ( CROWDSTRIKE ) and threat analysis threat hunting / incident response experience.
Experience in analysing security incidents and responding to them in methodical manner
Knowledge in Network security/ System Security/ Endpoint Security.
Experience of Event Monitoring and analysis and escalations. Provide inputs for content management.
Experience on Monthly Weekly and daily reporting.
Willing to work on 24/7 operations.
Review SIEM escalated incidents and qualify true positives
Provide a monthly trend and security analysis summary report
Provide SIEM event/Incident analytics support
Provide log analysis summary and recommendations on detection/protection of incidents
Perform advanced triages and work in collaboration with resolved groups third party or with designated customer contacts
Liaise between cross functional teams and assist in formulating security incident response report
Advocate protection and mitigation strategies to be implemented from lessons learnt exercises
Strong knowledge of Operating systems namely Windows linux and MAC
Strong understanding of cyber security threats
Knowledge of recent cyber security trends
Experience in creating rules in SIEM
Understanding of usage of AI in cyber security
Soft skills
Shall have good verbal/written communication skills
Should be willing to work in 24x7 environments
From time-to-time travel opportunities may be assigned
Incumbent should carry continual system improvement mindset and able to demonstrate in work.
Client facing technical analysis report and presentation skills
Role :- SOC Analyst (L3 Admin) Location: - Dallas TX Job Description for SOC Analyst (L3 Admin) HCL CSFC provides a superior foundation for building a professional career - a place for people to learn to achieve and grow. A philosophy that balances personal lifestyles perspectives and needs is...
Role :- SOC Analyst (L3 Admin)
Location: - Dallas TX
Job Description for SOC Analyst (L3 Admin)
HCL CSFC provides a superior foundation for building a professional career - a place for people to learn to achieve and grow. A philosophy that balances personal lifestyles perspectives and needs is an important part of our culture.
HCL CSFC is looking for an experienced SOC Analyst professional to join its team.
Candidate Persona
Ability to work with very large and complex network.
Self-motivated individual and creative thinker who will take ownership of tasks and projects able to work with the team and manages tasks effectively and has a proven track record of consist and organized outputs.
The ideal candidate will demonstrate an eagerness to understand complex problems and requirements an aptitude for translating these problems into workable designs and solutions and will possess a keen eye for detail.
Tines is a no-code SOAR (Security Orchestration Automation and Response) platform built specifically to help SOC teams automate repetitive tasks route alerts and orchestrate complex incident response workflows without needing heavy software engineering.
Core Capabilities for SOC Teams:
Endpoint Detection and Response (EDR)
Intelligent Workflows: Build end-to-end Stories (automated workflows) ranging from fully autonomous agentic responses to human-in-the-loop approvals.
Vendor Agnosticism: Integrates via APIs with almost any tool in your security stack (SIEM EDR Cloud platforms LLMs or internal tools).
Assisted Operations: Leverage AI-driven chat features and workbenches directly in the platform to query data summarize tickets and determine safe actions.
Framework Alignment: Tines is designed around the SOC Automation Capability Matrix (SOC ACM) allowing teams to systematically classify and mature their automation programs
Skills Required 8 years for L3
Having knowledge / experience on any SIEM tool (preferably SPLUNK) and SOAR tools ( preferably TINES).
Exposure to Mitre framework and equivalent Hands-on experience in EDR platforms ( CROWDSTRIKE ) and threat analysis threat hunting / incident response experience.
Experience in analysing security incidents and responding to them in methodical manner
Knowledge in Network security/ System Security/ Endpoint Security.
Experience of Event Monitoring and analysis and escalations. Provide inputs for content management.
Experience on Monthly Weekly and daily reporting.
Willing to work on 24/7 operations.
Review SIEM escalated incidents and qualify true positives
Provide a monthly trend and security analysis summary report
Provide SIEM event/Incident analytics support
Provide log analysis summary and recommendations on detection/protection of incidents
Perform advanced triages and work in collaboration with resolved groups third party or with designated customer contacts
Liaise between cross functional teams and assist in formulating security incident response report
Advocate protection and mitigation strategies to be implemented from lessons learnt exercises
Strong knowledge of Operating systems namely Windows linux and MAC
Strong understanding of cyber security threats
Knowledge of recent cyber security trends
Experience in creating rules in SIEM
Understanding of usage of AI in cyber security
Soft skills
Shall have good verbal/written communication skills
Should be willing to work in 24x7 environments
From time-to-time travel opportunities may be assigned
Incumbent should carry continual system improvement mindset and able to demonstrate in work.
Client facing technical analysis report and presentation skills