Job Description

Mitsui O.S.K. Lines (MOL) is one of the world's largest multimodal deep-sea carriers, with a rich maritime legacy spanning over

140 years

. Operating across

Asia, the Middle East, Europe, Africa, North America, South America, and Oceania

, MOL connects global trade routes with a strong presence in international shipping and logistics.

MOL Information Technology (MOL-IT)

is the

dedicated ICT solutions provider

for the MOL Group, delivering

customized technology solutions

across the

shipping, logistics, and supply chain domains

. Established in

1997

, MOL-IT has expanded significantly, operating from

four offices

in

Kolkata, Hyderabad, Mumbai, and Hong Kong

, with a talented team of over

380 software and management professionals

. As part of its growth strategy, MOL-IT is

enhancing its suite of ICT solutions

for existing customers while exploring opportunities to diversify beyond the MOL Group.

IPS (Information processing Services) another solution of MOL-IT

specializes in providing

24x7 offshore support services

to MOL Group companies worldwide. The

IPS team

manages key operational processes, categorized into:

Documentation Services:

Export & Import documentation processing

Accounting Services:

Accounts Receivables, Accounts Payables, GSA, and financial transactions

Other Business Support Services:

Freight Audit, TCTO Voyage Registration, and additional logistics function

With a focus on

efficiency, cost-effectiveness, and process excellence

, IPS India continues to drive operational success for MOL's global businesses.
For further details about organization, please visit

www.mol-it.com/

Video - An Introduction to MOL-IT - YouTube

Challenge

Innovate through insight

Honesty

Do the right thing

Accountability

Commit to acting with a sense of ownership

Reliability

Gain the trust of customers

Teamwork

Build a strong team

Safety

Pursue the world's highest level of safety culture

SOC Security Analyst (L2) will be responsible for responsible for day-to-day security threat monitoring and analysis. You will manage security incidents and review security alerts. You will work on known or suspected security threats. You will also work on threat intelligence, forensics and incident response adhering to security practices and frameworks. You will be part of 24x7 Security Operations Centre (SOC) team. You will be required to work in shifts.

Job Responsibilities

Experience of monitoring threats in a 24x7 Security Operation Center (SOC) Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for SOC. Correct root cause analysis as well identify suitable corrective steps. Perform deep packet analysis, collection of IOC (Indicator of Compromise). Collection of evidence, malware reverse engineering and write custom scripts whenever required. Threat mitigation and reporting are top priority for this position. Rule base Management, SOC Fine tuning and administer SIEM tools Manage and coordinate with team to accomplish daily operational tasks as per defined standard and Maintaining the SLA's. Identify vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.

Advanced working skills with Microsoft Sentinel, Cortex XDR, Trend Micro Exchange Security, Microsoft Defender for Endpoint, Fortigate etc.

Relevant certification is a plus. Good working knowledge with SOAR and EDR tools. Investigate and respond to security incidents. Document and report on information security issues Evaluate and implement SIEM use cases. Document and continuously improve playbooks. Monitor for threats, analyze, and escalate as per process. Analyze functional and technical cases and provide a resolution in accordance with agreed metrics. Knowledge about different type of attacks like XSS, CSRF, LFI, Bruteforce, MITM etc. Basic knowledge of Linux operating system and windows events logs Manage and support the log collection, security scanning, intrusion detection, proxy, mail gateway and other security technologies. Review, triage security alerts, provide analysis, suggest remediation, track remediation. Support in resolving security incidents. Monitor networks and systems for potential threats. Knowledge of network data flows, ports, protocols, and other network and application services/technologies. Respond to incidents by collecting, analyzing and preserving digital evidence to assist with remediation of critical information security incidents. Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment. Ability to write technical documentation and present technical briefings to diverse audiences. Strong understanding of threat landscape in terms of the tools, tactics, and techniques of threats employing both commodity and custom malware. Current knowledge of security threat intelligence and recent attack vectors Strong forensics analysis skills

Minimum Qualification & Background:

5-7years of Information Security experience. Minimum 3 years in a large 24x7 Security Operations Centre (SOC) Relevant security certification CEH, CompTIA Network Security Plus, CHFI, Certified SOC analyst will be a plus. Basic knowledge about SIEM Knowledge of current security threats, techniques, and landscape. Security events, incident review and triage experience with Endpoint Detection and Response (EDR) tools Experience and knowledge related to the configuration and maintenance of security monitoring and reporting platforms. Ability to conduct detailed analysis of various security related events like Phishing, Spoofing, Ransomware and SQL Injections etc. Incident Response experience (identifying, investigating, and responding to complex attacks) * Experience with threat hunting.