Job Description
- Support Security Operations Center (SOC) as a shift lead:
- Perform threat-based detailed investigations
- Recommend incident detection methodologies
- Provide expert support to incident response and monitoring functions
Job Responsibilities
- Be a technical and thought leader:
- Drive KPI metrics
- Focus on automation, analytics, and operational efficiencies
- Provide recommendations to:
- Improve security postures or reduce security risk
- Identify opportunities for automation to save manual efforts
- Ensure the highest quality of SOC service delivery:
- Help mature incident response actions, policies, procedures
- Implement process improvements
- Act as escalation point for all advanced security incidents from L1 SOC analysts:
- Responsible for all SOC activities or BAU in a shift (24/7 support)
- Perform the following tasks:
- Review and enhance run books, operating procedures, and playbooks
- Assign and prioritize tasks/incidents to SOC L1 team members
- Manage incidents in pipeline:
- Escalate outstanding incidents
- Update incidents as necessary
- Handle escalations of open incidents
- Responsible for:
- Meeting SLA requirements
- Leading SOC shift handover calls
- Providing continuous improvement and on-the-job training for L1 SOC analysts
- Expert in analyzing logs from:
- Network devices
- Applications
- Infrastructure services
- Platforms
- Security products
- Endpoint data using SIEM and various security technologies
- Manage security event or incident investigations:
- Anchor/handle incidents using industry-known frameworks like NIST, MITRE, etc.
Location
Bengaluru, Karnataka, India