Job Description

Do you love a career where you Experience , Grow & Contribute at the same time, while earning at least 10% above the market If so, we are excited to have bumped onto you. Learn how we are redefining the meaning of work, and be a part of the team raved by Clients, Job-seekers and Employees. Jobseeker Video Testimonials Employee Glassdoor Reviews If you are a SOC Level 2 Consultant and looking for excitement, challenge and stability in your work, then you would be glad to come across this page. Role: SOC Level 2 Consultant Location: Hyderabad, Chennai, Pune(Hybrid) Experience: 4-10 Years As a Fusion Level 2 Consultant within the Security Operations Center (SOC), your primary responsibility is to act as the frontline defense, swiftly identifying potential information security incidents. Your role involves: Monitoring various client sources for potential security incidents, including health alerts, monitored solutions, and information requests. This includes real-time channels, periodic reports, email, helpdesk systems, phone calls, and chat sessions. Following client and incident-specific procedures to triage potential security incidents, ensuring validation and determining necessary mitigation steps. Escalating potential security incidents to client personnel, implementing response countermeasures, and suggesting operational enhancements. Maintaining accurate incident logs within the case management system. Staying informed about the client\'s technology architecture, known vulnerabilities, security solution architectures, prevalent threats according to client threat intelligence, and recent security incidents. Conducting advanced analysis of monitoring results, assessing escalated alerts from Level 1 Analysts, and performing web hunting for new patterns/activities. Providing guidance on content development, testing, and advising on response action plans for information risk events based on incident severity and type. Ensuring prompt validation and comprehensive investigation of all identified events. Conducting end-to-end event analysis, incident detection, and managing escalations based on documented procedures. Creating and documenting new procedures and runbooks/playbooks as required. Assisting Shift Leads and fulfilling their responsibilities in their absence. Upholding monthly Service Level Agreements (SLAs) and compliance with processes, runbooks, templates, and best practices. Supporting the Cyber Hunting team with advanced investigations and providing malware analysis to identify compromise indicators and develop detection signatures. Continuously enhancing services by identifying and addressing gaps in knowledge, tuning false positives, recommending new tools, content, countermeasures, scripts, and plugins. Conducting peer reviews and consultations with Level 1 analysts regarding potential security incidents. Serving as a subject matter expert in at least one security-related area. Pursuing continuous learning and advancement within the SOC, aiming for a Shift Lead role. Providing shift status reports and metrics, supporting weekly Operations calls, and adhering to internal operational security policies. Engaging in assigned light project work Requirements 4-6 years of experience in SOC operations or robust security technology operational roles. Certification: Certified Information Systems Security Professional (CISSP), Certified Intrusion Analyst (GIAC), Continuous Monitoring (GMON), Certified Ethical Hacker (CEH), or an equivalent certification. Ability to work in rotating shifts, providing 24/7 client support. Proficiency in security technologies including Security Information and Event Management (SIEM), Intrusion Detection and Prevention Systems (IDS/IPS), Data Loss Prevention (DLP), Proxy, Web Application Firewall (WAF), Endpoint Detection and Response (EDR), Anti-Virus software, Sandboxing, network and host-based firewalls, Threat Intelligence, Penetration Testing, among others. Familiarity with Advanced Persistent Threats (APT) tactics, techniques, and procedures. Understanding of potential attack activities like network probing/scanning, DDoS attacks, malicious code activities, etc. Knowledge of common network infrastructure devices such as routers and switches. Understanding of fundamental networking protocols like TCP/IP, DNS, HTTP. Basic grasp of system security architecture and security solutions. Preferred Skills Excellent interpersonal and organizational skills. Excellent oral and written communication skills. Strong analytical and problem-solving skills. Self-motivated to improve knowledge and skills. A strong desire to understand the what as well as the why and the how of security incidents. Qualification Bachelor\'s degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. BenefitsVisit us at http://alignity.io/careers. Alignity Solutions is an Equal Opportunity Employer, M/F/V/D. CEO Message: Click Here Clients Testimonial: Click Here

foundit