Security Operations Center Analyst

• Monitoring Security Information and Event Management (SIEM) platform for security alerts, preferably Splunk Enterprise Security.
• Experience with Banking & Finance Customers.
• Providing metrics and reports around security monitoring by designing dashboards for asset owners and management consumption.
• Leveraging existing technologies within the organization to expand the scope of coverage of the security monitoring service.
• OS Full-Service Management/Troubleshooting and have performed Device Level/SIEM Log Analysis.
• Recognize threats such as but not limited to DDOS, APT lifecycle (including Data exfiltration attempts).
• Providing escalation response for security events including but not limited to intrusion detection, malware infections, denial of service attacks, privileged account misuse and network breaches.
• Event management includes triage, correlation, and enrichment of individual events to either rule out as false positive, trigger standard detective and corrective responses, or escalating as a security incident.

Primary Skills

• Splunk Enterprise Security
• Security Information and Event Management (SIEM) Monitoring
• Incident Response

Secondary Skills

• Ability to communicate efficiently within a team environment.

Work location : Mumbai,Pune,Bengaluru and Coimbatore (Hybrid Work Mode)