Sr. Security Analyst

Job Summary

Role: Senior Security Analyst Job Description ¿ Responsible for operationalization of new security platforms to enable security operations Center to stay ahead of emerging and current threats. ¿ Security Information Event Management & Analytics Platforms integration ¿ Trellix SIEM(Mcafee) ¿ Build Co relation rules from different integrated sources that drive security analytics and incident response. ¿ Custom integration of Log sources and SIEM content development. ¿ Act as a Subject Matter Expert for Onpremise SIEM solution.. ¿ Configure and troubleshoot Mcfaee SIEM components and related functionalities. ¿ Plan and onboard different data sources such as: Windows, linux, AD, Firewall, other security tools integration. ¿ Candidates with prior experience of setting up security operations from scratch would have added advantage. ¿ Understand business requirements from the client and translate them into technical deliverables within Cyber Security domain. ¿ Creating parsers for Unknown events, Identify Security Events and Co Relation Rules. ¿ Manage the daily/weekly/monthly SOC metrics reporting for the assigned set of clients. ¿ Build custom use cases, dashboards, reports as per the requirement from client and internal stakeholders. ¿ Proven history of maturing SOC from Initial to Optimised level of CMM maturity model. Skills Required Must Have s ¿ 6+ years of experience in IT and 6+ years in Cyber Security. ¿ Hands on experience on On premise SIEM like IBM QRadar, Mcafee SIEM, Trellix SIEM including creation of custom queries, detection rules. ¿ SIEM ¿ Trellix SIEM, QRadar, Splunk ¿ Thorough understanding of various industry leading cloud native SIEM architecture, pricing and technical knowhow. ¿ Knowledge about various threat vectors and attackers TTPs. ¿ In depth knowledge of Active Directory. ¿ Excellent communication skills with ability to lead discussions with C level executives. Key Attribute ¿ Ability to work collaboratively in a fast paced environment. ¿ Continuous learner with a proactive approach to stay updated on industry trends. ¿ Strong problem solving skills and ability to make sound decisions under pressure. ¿ Customer facing with good written skills and strong communication skills at all levels. ¿ May be required to participate in out of hours on call rota. ¿ Ability to consistently deliver to deadlines while prioritizing competing demands for time. Qualifications ¿ Bachelor¿s degree in information technology or related field. ¿ Relevant certifications (CISSP, CEH) ¿ Working knowledge on any other SIEM tool viz, Trellix SIEM, Splunk, QRadar etc.