SOC SME (Job Code : J48243)  

 Job Summary
Share this job on Facebook  Share this job on Twitter  Share this job on Linked In
 
Experience:
7.00 - 14.00  Years 
 
Location:
Bangalore
 
Designation:
SOC SME
 
Degree:
BCA, BE-Comp/IT, BE-Other, BSc-Comp/IT, BSc-Other, BTech-Comp/IT, BTech-Other
 
Educational Level:
Graduate/Bachelors
 
Stream of Study:
Engineering
 
Industrial Type:
Other
 
Functional Area:
IT Software - Network Administration / Security
 
Key Skills:
SOC
 
Job Post Date:
2025-01-16 17:53:02  
 
 

 Company Description
 
The company is a Fortune 500 company and selected by Fortune as one of “America’s most admired co”.
The company is the financial services industry and specialises in Title Insurance, Commercial and Residential Insurance, annuity and life insurance products. They have over 25000 employees worldwide in 20 countries and operate in over 1200 locations across the United states.
 

 Job Description
 
DUTIES & RESPONSIBILITIES
• Owns and leads individual incident response activities by analyzing security alerts and coordinating responses. Perform in-depth event review and analysis where appropriate. Analyze events, research the potential cause, and recommend a course of action
• Designs modern detective controls for emerging security risks and involved in innovative programs to enhance the firm’s security posture
• Hunts for indications of compromise across multiple technology platforms
• Continuously improves our alerting use cases and the threat hunting program
• Stays updated on the latest security trends, vulnerabilities, and threat actors to continually improve the organizations security posture
• Participates in on-call rotation schedule to provide 24/7 coverage for security incidents and emergencies
• Documents/generates reports detailing security incidents for security leaders and the business
• Conducts postmortem reviews of incident response (IR) activities, to facilitate continuous improvement
• Researches security trends with the goal of improving our processes and tools

MINIMUM REQUIREMENTS
• Threat hunting experience
• Familiarity with known cyber security frameworks including NIST and Mitre, ATT&CK, and fundamentals of kill chain analysis
• Hands-on working knowledge of SIEM/SOAR/XDR Tools (Cortex XSIAM, Torq, etc.)

PREFERRED EXPERIENCE
• Familiarity with the principles of network and endpoint security, current threat, and attack trends, and have working knowledge of security principles such as “defense in depth”
• Familiarity with performing security Incident Response (IR) activities in complex organizations, with familiarity of the following: Endpoint Detection and Response (EDR) or Endpoint Forensics, Network Log Analysis, Public Cloud Defense (Azure, AWS, GCP, etc.)
• Relevant industry certifications such as CISSP, GIAC, or CEH
• Scripting knowledge (Python, PowerShell, etc.)
• Forensic knowledge
• Ability to assess and prioritize risks associated with alerts and events based on both industry knowledge and organizational context
• Excellent analytical and problem-solving skills
• Strong communication skills, both spoken and written