Security Operations Center Analyst

Greetings from TCS!

Dear Professional,

This is Deepa Natarajan, part of Strategic hiring team of Tata Consultancy Services. Hope you and your family are doing good.

Role: SOC Analyst

Desired Experience Range: 3+ years

Joining Location: Chennai/Hyderabad/Mumbai/Pune

We are currently planning to do an In-person Mega Drive on 25th January 2025 at TCS – Chennai/Hyderabad/Mumbai/Pune.

Date: 25th January 2025

Venue Details :

Chennai: Sholinganallur, Kumaran Nagar, 415/21-24, TNHB Main Rd, Chennai – 600119

Hyderabad: Deccan Park, Plot No.1, Hitech City Main Rd, Software Units Layout, HUDA Techno Enclave, Madhapur, Hyderabad – 500081

Mumbai: Yantra Park, Pokharan Road Number 2, TCS Approach Rd, Thane West, Thane – 400606

Pune: Sahyadri Park, Rajiv Gandhi Infotech Park, Hinjewadi Phase 3, Pune – 411057

• Must have had daily hands on technical experience in working in Security operation Center and SIEM Tools (i.,e Qradar, Sentinel/Splunk, SIM Tools, Threat Hunting, Monitoring, Monitoring, solving incidents and correcting false positives)
• Responsible for performing day to day activities such as Analysis and investigation of Logs and events from various log sources with the help of simple and advanced Correlation rules, dashboards, Reports and providing complete analysis to respective team/customer
• Hands on experience working on Log Analysis, Malware Analysis, Phishing Analysis Cyber security incident response
• Extensive knowledge of Security applications like SIEM, EDR, MDR, FW, WAF, IPS, AV, Vulnerability Scanners etc.
• Reducing false positive alerts with proper analysis post customer approvals with helps to improve the performance of Logs Monitoring.
• Ensure timely response to any Security incident to minimize risk exposure and production down time of the environment.
• Safely acquire and preserve the integrity of cyber security data required for incident analysis to help determine the technical/operational impact, root cause(s), scope and nature of the incident
• Engaging with IT functions to ensure alerts are auctioned appropriately and in a timely manner.
• Investigate and respond to reported security incidents including documenting case status within Service Now and other ticketing tools and reporting findings to customers and management
• Work with security tools team and senior Cyber Defense investigators to identify suspicious activity and security notifications including SIEM alerts, system reports, security tool alerts, etc
• Support, monitor ,investigate and escalate the customer issues and Security incidents
• Continuously evaluate security infrastructure to identify performance and security improvements
• Preparation of Daily, weekly Monthly Reports with analysis and presenting the same to the customer in weekly call
• Building and maintaining senior management dashboards to provide a clear understanding of team activities and threat landscape.
• Routinely develop/create and update Security incident response playbooks/run books/SOP’s to ensure response activities align with best practices
• minimize gaps in response and provide comprehensive mitigation of threats
• Experience in other areas of Cyber Security (Antivirus ,Data Loss Protection, Vulnerability Management, Threat Intelligence, Access Management, Consulting and etc)
• Basic knowledge of TCP/IP networking.
• Knowledge of common malware operating practices and remediation techniques and tools
• Demonstrate good judgment in solving problems as well as identifying problems in advance, and proposing solutions interaction
• Strong understanding of End Point Detection and Protection technologies like Carbon black EDR,AV Tools
• Basic understanding of networking concepts: TCP/IP, DNS, IP addressing, connectivity troubleshooting.
• Strong Understanding of ITIL Process i.e., incident, change, problem & Major Incident management.
• Handle critical escalations including malware outbreaks
• Troubleshoots complex issues and provides incident resolution for all related incidents requiring escalated support or subject matter enterprise.
• Ability to communicate and collaborate effectively with other team members in a geographic and culturally diverse workforce