Qualification: B.Tech./ BE/ MCA Experience: 8+ Years Essential Skills (technical): Must has SIEM, SOAR, EDR/XDR, NAC, Threat Intelligence PlatformSOC ANYLST L3-Proficient in Incident Management and Response, handling escalationsIn-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.Provide analysis and trending of security log data from a large number of heterogeneous security devicesProvide threat and vulnerability analysis as well as security advisory servicesAnalyze and respond to previously undisclosed software and hardware vulnerabilitiesInvestigate, document, and report on information security issues and emerging trendsGuide and share information with other analysts and other teams;Knowledge of various operating system flavors including but not limited to Windows,Linux, UnixKnowledge of TCP/IP Protocols, network analysis, and network/security applications;Knowledge of common Internet protocols and applicationsCommunicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiencesKnowledge about various tools like SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, Advanced SOC

Roles and ResponsibilitiesDesign, implement, and maintain security solutions such as Firewall, IPS/IDS, WAF, DLP, APT, NDR, DDoS Tool, Web Gateway, Anti-Spam and Email Security Gateway.Configure F5 Load Balancer for high availability and scalability.Monitor network traffic using tools like Insider Threat Management System to detect potential threats.Implement Insider Threat Management strategies to mitigate risks from within the organization.Ensure compliance with industry standards for IT security best practices. Mandatory Certifications / Diplomas:NSE4/PCNSE/F5/ F5 Certified BIG-IP Administrator/CISSP

Roles and ResponsibilitiesConduct advanced threat analysis using various tools such as AV, EDR/XDR, HIPS/NIPS, Linux, NAC, Network Monitoring tools, Packet Analysis, PIM, IAM, UBEA, VAPT.Analyze security events and incidents to identify potential threats and vulnerabilities.Develop incident response plans and procedures for handling security breaches.Collaborate with other teams to resolve complex technical issues related to cybersecurity.Stay up-to-date with industry trends and best practices in IT security.

Role & responsibilities : Person should have adequate knowledge of security devices like firewalls, IPS, Web Application Firewall, DDOS, EDR, Incident response, SOAR and other security devices. • Construction of SIEM content required to produce Content Outputs (e.g., filters, active lists, correlation rules, reports, report templates, queries, trends, variables) • Knowledge of packet level analysis • Knowledge of networking protocols and technologies and network security • Sound analytical and troubleshooting skills.