Employer Active
Job Alert
You will be updated with latest job alerts via emailJob Alert
You will be updated with latest job alerts via emailJob Description for Network SOC L2
Key Task
Hands on SIEM (Splunk ELK) EDR (Crowd strike) Service now/Remedy SOAR tools
Managing NAS storage
Understanding of cloud security and tools (Azure/AWS etc.)
Understanding of various Cyber attacks
Event logging and event analysis and experience in forensic analysis Packet Analysis tools like Wireshark/NMAP TCP Dump etc.
Good understanding of Diverse Telecom and Infrastructure technology 5G 4G Fixed line Windows Unix Security tools technology SOC operation Incident Life cycle NIST framework
Should have good knowledge in Security Devices and logging formats of NG Firewalls ID/IPS AV/EDR Proxy EDR NDR
Understanding of current trends in attacker and threat actor tools Cyber Attack techniques and procedures (TTP) Threat vectors IOC Incident management and risk management.
Demonstrating skills on Security incident management Threat hunting Vulnerability management End point detection and Response Security Event monitoring & Investigation analysis and troubleshooting undertake ownership of security incident tickets and follow up till closure
Able to create reports for Weekly/Monthly dashboard Audit purpose data KPI and RCA for critical incidents.
Creation of a Trouble Ticket (TT) Process Management
Incident or Problem correlation Assist L3 to perform Investigation suggest to finetune UC.
Threat Advisories and provide update along with addition of IOCs in SIEM.
Provide technical Security support for various teams in response and remediation activities
Document/update playbooks and other operational procedures
Able to fine tune Splunk Use cases Rules and Optimize search performance Data onboarding Fields extraction Develop and Execute Complex Splunk/ELK Queries
Soft Skills
Excellent communicator and technical writing skills able to engage and effectively respond to diverse stakeholders.
Actionoriented and results driven with strong timemanagement skills
Flexible attitude reliable problemsolving team player and analytical skills
Excellent interpersonal skills capable to interact with people at all levels
Certification &Experience
Min 45 years in cyber security operations 24 X7 Telecom/IT SOC having hands on experience in Incident response Investigation in a large telecom/ Enterprise IT Environment.
BTech (CS/IT/ECE) Bachelors degree Technical or equivalent work experience
CEH CCNA CompTIA Security Any SIEM and EDR(ELK/Splunk/CrowdStrike) certification preferred
Full Time