SOC ANALYST

By /

Job Description

Job Title: Security Operations Centre (SOC) Analyst

About Us:

At Innovon Technologies, we are a reputable technology services and consulting firm with a global reach. We specialize in providing high-quality services that deliver impactful results to our clients. Our mission is to empower businesses to achieve more by leveraging the latest technological advancements and best practices in their industries.

Job Summary/Objective: 

As a SOC Analyst, your primary responsibility will be to monitor security events and alerts, conduct threat analysis, and respond to security incidents. You will utilize SIEM tools, particularly Splunk, to collect and analyze security event logs, develop and fine-tune SIEM rules, and investigate incidents. Additionally, you will leverage your technical expertise in areas such as forensics, malware analysis, and packet capture analysis to identify and mitigate security threats. You will be responsible for documenting incidents, managing the SIEM infrastructure, and collaborating with stakeholders to implement security automation and orchestration using SOAR platforms like Phantom. Your role will also involve preparing reports on security incidents and presenting findings to management and relevant committees.

Responsibilities:  

Threat Analytics and Incident Response:

  • Monitor security events and alerts using SIEM tools, with a focus on Splunk.
  • Conduct threat analysis and investigate security incidents, ensuring timely and effective response.
  • Perform triage, containment, eradication, and recovery actions as part of the incident response process.
  • Document incident details, response actions, and lessons learned for continuous improvement.
  • SIEM Management:
  • Utilize Splunk or other SIEM tools to collect, analyze, and correlate security event logs.
  • Develop and fine-tune SIEM rules, alerts, and reports to identify and respond to security threats.
  • Configure and maintain SIEM infrastructure, ensuring proper data collection and storage.
  • Collaborate with other teams to integrate relevant log sources into the SIEM platform.

Security Orchestration, Automation, and Response (SOAR):

  • Experience with SOAR platforms, specifically Phantom, is preferred.
  • Automate security processes and workflows to improve efficiency and response times.
  • Develop and maintain playbooks and automation scripts for incident response activities.
  • Collaborate with stakeholders to define use cases and implement SOAR solutions.

Technical Security Skills:

  • Possess strong technical expertise in areas such as forensics, malware analysis, and packet capture analysis.
  • Perform forensic analysis of security incidents, identifying indicators of compromise (IOCs) and determining the extent of the breach.
  • Conduct malware analysis to understand the behaviour and impact of malicious software.
  • Analyze network traffic and packet captures to identify security vulnerabilities and potential threats.

Documentation and Reporting:

  • Create and maintain clear and concise operational processes and procedures documentation.
  • Prepare regular reports on security incidents, trends, and key performance indicators.
  • Present findings and updates to management and relevant committees

Qualifications and Skills:  

  • Minimum of 3 years of experience in a SOC Analyst role, with a strong focus on threat analytics and incident response.
  • Solid understanding and hands-on experience with SIEM tools, specifically Splunk.
  • Preferably experienced with SOAR platforms, particularly Phantom.
  • Strong background in Security Operations or Engineering.
  • Proficiency in technical skills such as forensics, malware analysis, and packet capture analysis.
  • A bachelor’s degree in Computer Science, Information Technology, or a related field is preferred. Relevant industry certifications such as Certified Information Systems Security Professional (CISSP) or Certified Incident Handler (GCIH) are advantageous.

Work Environment: 

  • You will work in a Security Operations Center (SOC) environment, collaborating with other members of the security team and cross-functional teams.
  • The work environment may involve monitoring and responding to security incidents on a 24/7 basis, including possible shifts and on-call responsibilities.

Company Culture

  • Diversity and Inclusion: Innovon Tech promotes a culture of diversity and inclusion, recognizing the value of different perspectives, backgrounds, and experiences. They aim to create an inclusive work environment where all employees feel respected, valued, and empowered.
  • Innovation and Continuous Improvement: Innovon Tech values innovation and encourages employees to think creatively, embrace change, and identify opportunities for improvement.
  • Work-Life Balance: Innovon Tech recognizes the importance of work-life balance and promotes employee well-being. They offer flexible work arrangements, wellness programs, and resources to help employees manage their personal and professional lives effectively.

How to Apply: Interested Candidate please share your resume to mamta.misala@innovontek.com or can upload your resume at Innovon Tech website www.innovon.in.

Job Category: Development
Job Type: Contractor
Job Location: Remote

Apply for this position

Allowed Type(s): .pdf, .doc, .docx

Innovon Technologies is a reliable partner for legacy modernization, digital transformation, offering a comprehensive range of innovative solutions, products, and services to help businesses succeed in the digital & AI era. Our team of experts is committed to delivering value and tangible results, making us the ideal partner for meeting your business needs, regardless of your size or industry.

Company

Get In Touch

Linkedin Twitter Facebook Instagram Youtube

© 2024 Innovon Technologies 

Scroll to Top