Network SOC L2
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Job Description for Network SOC L2
Key Task
Hands on SIEM (Splunk ELK) EDR (Crowd strike) Service now/Remedy SOAR tools
Managing NAS storage
Understanding of cloud security and tools (Azure/AWS etc.)
Understanding of various Cyber attacks
Event logging and event analysis and experience in forensic analysis Packet Analysis tools like Wireshark/NMAP TCP Dump etc.
Good understanding of Diverse Telecom and Infrastructure technology 5G 4G Fixed line Windows Unix Security tools technology SOC operation Incident Life cycle NIST framework
Should have good knowledge in Security Devices and logging formats of NG Firewalls ID/IPS AV/EDR Proxy EDR NDR
Understanding of current trends in attacker and threat actor tools Cyber Attack techniques and procedures (TTP) Threat vectors IOC Incident management and risk management.
Demonstrating skills on Security incident management Threat hunting Vulnerability management End point detection and Response Security Event monitoring & Investigation analysis and troubleshooting undertake ownership of security incident tickets and follow up till closure
Able to create reports for Weekly/Monthly dashboard Audit purpose data KPI and RCA for critical incidents.
Creation of a Trouble Ticket (TT) Process Management
Incident or Problem correlation Assist L3 to perform Investigation suggest to finetune UC.
Threat Advisories and provide update along with addition of IOCs in SIEM.
Provide technical Security support for various teams in response and remediation activities
Document/update playbooks and other operational procedures
Able to fine tune Splunk Use cases Rules and Optimize search performance Data onboarding Fields extraction Develop and Execute Complex Splunk/ELK Queries
Soft Skills
Excellent communicator and technical writing skills able to engage and effectively respond to diverse stakeholders.
Actionoriented and results driven with strong timemanagement skills
Flexible attitude reliable problemsolving team player and analytical skills
Excellent interpersonal skills capable to interact with people at all levels
Certification &Experience
Min 45 years in cyber security operations 24 X7 Telecom/IT SOC having hands on experience in Incident response Investigation in a large telecom/ Enterprise IT Environment.
BTech (CS/IT/ECE) Bachelors degree Technical or equivalent work experience
CEH CCNA CompTIA Security Any SIEM and EDR(ELK/Splunk/CrowdStrike) certification preferred
Skill Required: 3+ years of Experience with education in B.Tech/B.E or M.Tech/M.E(ECE) or any other relevant degree. Strong programming experience in C/C++ in embedded domain. Strong debugging and problem-solving skills. Experience with common embedded protocols/interfaces like I2C, SPI, USART, buses, bridge chips, FPGAs, hardware queues/FIFOs, interrupts, DMA, Experience in multi core, multi thread, IPC, system programming, GDB, kernel/user space interfaces in Linux OS Ability to work up and down the embedded stack: boot loader, device drivers, kernel, user space. Experience in using source control, bug tracking and other relevant tools. Well versed with software development process. Good to have ability to read schematics, understand device datasheets use lab tools like - JTAG, oscilloscopes, power sources, multi-meters, etc experience in SDK/tool chain setup, make files, scripting
Employment Type
Full Time
