SOC-Engineer

5 Months ago • 1-3 Years • Cyber Security

Job Summary

Job Description

This role requires a SOC Engineer with 1-3 years of experience in building and operating security controls in domains like network/perimeter security, enterprise endpoint security, DLP, and IAM. Expertise in SIEM, endpoint security, incident handling, and DLP is essential.
Must have:
  • SIEM Management
  • Endpoint Security
  • Incident Handling
  • DLP Solutions
Good to have:
  • Security Certifications
  • Industry Standards
  • ITIL Practices
  • Cloud IaaS

Job Details

About the job

Job Description:

Provide tier two operational support, leading team efforts in resolution of incidents and outages for information security technology and its dependencies on Public and Private Cloud computing environments, shared platforms, and operating systems for more than three of the following technologies:

Ensuring team's adherence to SOPs, training and performance monitoring for team members, and continuous process improvement for efficiency, including automation, wherever applicable and conduct recurring assessments of all the key SOC workflows to highlight process deficiencies as well as improvement opportunities for staff.

  • Malware Analysis
  • SIEM (Splunk)
  • Software-defined (Cloud) Network Security
  • Endpoint Security Protection
  • Data Loss Prevention

Partner with other technology teams in handling and responding to internal customer issues, conducting problem analysis and providing solutions for service level improvements, and ensuring timely remediation of security issues in accordance with corporate policies and standards

Execute daily security technology administration functions

Perform Root Cause Analysis (RCA) on applicable technology

Validate quality of dashboards and alerts and suggest updates to reflect new threats and changes in the monitored environment

Support the Security Operations team in its efforts on various technology projects and operational initiatives

Work as a part of a team to ensure that Guardian customers' data, technology platforms, and infrastructure are available and safeguarded from cyber threats

Follow ITIL practices regarding incident, problem, and change management

Stay up to date with emerging cyber threats, industry best practices, and applicable regulatory requirements

Required Qualifications

Being curious and desire to analyze anomalies

Desire and passion to learn and grow in Cybersecurity

Customer-focused demeanor

Minimum 1-3 years of proven experience in building and operating security controls in at least two of the following domains:

  • Network/Perimeter Security, including Next-Gen firewalls, intrusion prevention systems, proxies, and Web Application firewalls (WAFs)
  • Enterprise Endpoint (host-based) Security
  • DLP and Secure Data Transmission, Storage, and Access
  • Identity and Access Management / User Behavior Analytics

Understanding of security architecture, operating and troubleshooting principles of Microsoft Windows and Linux operating systems

SIEM management: Senior SOC Engineers must have extensive experience in managing SIEM systems, including configuring, tuning, and optimizing them for maximum efficiency.

Endpoint security: They must have a deep understanding of endpoint security solutions, including antivirus, anti-malware, and intrusion prevention systems.

Security incident handling: Senior SOC Engineers must have experience in handling security incidents, including identifying the source of the threat, containing it, and preventing further damage.

Data Loss Prevention (DLP): They must have experience in implementing and managing DLP solutions to prevent data breaches.

Threat intelligence: They must stay up-to-date with the latest security threats and trends, and use this information to improve the organization's security posture.

Team management: Senior SOC Engineers must lead and manage the security operations center team, including hiring, training, and mentoring team members.

Documentation: They must ensure that all security events, incidents, and responses are properly documented for future reference and analysis.

Collaboration: Senior SOC Engineers must work closely with other IT teams, including network engineers, system administrators, and application developers, to ensure that all systems are secure.

Continuous improvement: They must continuously evaluate and improve the organization's security posture by implementing new technologies, processes, and procedures.

Requirements for a Senior SOC Engineer typically include a bachelor's degree in computer science or a related field, along with relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH). Strong leadership skills, analytical skills, attention to detail, and the ability to work well under pressure are also essential. Ability to effectively work in a team, as well as to be an independent contributor on select projects

Preferred Qualifications

Recognized Security Industry and Public Cloud IaaS certifications

Familiarity with security industry standards and best practices (NIST 800-53, ISO27001, NIST CSF, HITRUST, NYDFS-Cybersecurity, HIPAA, FedRAMP, OWASP, etc.)

Familiarity with ITIL; experience with incident, problem, change, and risk management

Qualifications:

  • Provide tier two operational support, leading team efforts in resolution of incidents and outages for information security technology and its dependencies on Public and Private Cloud computing environments, shared platforms, and operating systems for more than three of the following technologies:
  • Ensuring team's adherence to SOPs, training and performance monitoring for team members, and continuous process improvement for efficiency, including automation, wherever applicable and conduct recurring assessments of all the key SOC workflows to highlight process deficiencies as well as improvement opportunities for staff.
  • Malware Analysis
  • SIEM (Splunk)
  • Software-defined (Cloud) Network Security
  • Endpoint Security Protection
  • Data Loss Prevention
  • Partner with other technology teams in handling and responding to internal customer issues, conducting problem analysis and providing solutions for service level improvements, and ensuring timely remediation of security issues in accordance with corporate policies and standards
  • Execute daily security technology administration functions
  • Perform Root Cause Analysis (RCA) on applicable technology
  • Validate quality of dashboards and alerts and suggest updates to reflect new threats and changes in the monitored environment
  • Support the Security Operations team in its efforts on various technology projects and operational initiatives
  • Work as a part of a team to ensure that Guardian customers' data, technology platforms, and infrastructure are available and safeguarded from cyber threats
  • Follow ITIL practices regarding incident, problem, and change management
  • Stay up to date with emerging cyber threats, industry best practices, and applicable regulatory requirements

Required Qualifications

  • Being curious and desire to analyze anomalies
  • Desire and passion to learn and grow in Cybersecurity
  • Customer-focused demeanor
  • Minimum 1-3 years of proven experience in building and operating security controls in at least two of the following domains:
  • Network/Perimeter Security, including Next-Gen firewalls, intrusion prevention systems, proxies, and Web Application firewalls (WAFs)
  • Enterprise Endpoint (host-based) Security
  • DLP and Secure Data Transmission, Storage, and Access
  • Identity and Access Management / User Behavior Analytics
  • Understanding of security architecture, operating and troubleshooting principles of Microsoft Windows and Linux operating systems
  • SIEM management: Senior SOC Engineers must have extensive experience in managing SIEM systems, including configuring, tuning, and optimizing them for maximum efficiency.
  • Endpoint security: They must have a deep understanding of endpoint security solutions, including antivirus, anti-malware, and intrusion prevention systems.
  • Security incident handling: Senior SOC Engineers must have experience in handling security incidents, including identifying the source of the threat, containing it, and preventing further damage.
  • Data Loss Prevention (DLP): They must have experience in implementing and managing DLP solutions to prevent data breaches.
  • Threat intelligence: They must stay up-to-date with the latest security threats and trends, and use this information to improve the organization's security posture.
  • Team management: Senior SOC Engineers must lead and manage the security operations center team, including hiring, training, and mentoring team members.
  • Documentation: They must ensure that all security events, incidents, and responses are properly documented for future reference and analysis.
  • Collaboration: Senior SOC Engineers must work closely with other IT teams, including network engineers, system administrators, and application developers, to ensure that all systems are secure.
  • Continuous improvement: They must continuously evaluate and improve the organization's security posture by implementing new technologies, processes, and procedures.
  • Requirements for a Senior SOC Engineer typically include a bachelor's degree in computer science or a related field, along with relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Ethical Hacker (CEH). Strong leadership skills, analytical skills, attention to detail, and the ability to work well under pressure are also essential. Ability to effectively work in a team, as well as to be an independent contributor on select projects

Preferred Qualifications

  • Recognized Security Industry and Public Cloud IaaS certifications
  • Familiarity with security industry standards and best practices (NIST 800-53, ISO27001, NIST CSF, HITRUST, NYDFS-Cybersecurity, HIPAA, FedRAMP, OWASP, etc.)
  • Familiarity with ITIL; experience with incident, problem, change, and risk management

Location:

This position can be based in any of the following locations:

Chennai, Gurgaon

Current Guardian Colleagues: Please apply through the internal Jobs Hub in Workday

Similar Jobs

Sigma Software - Project Manager (AdTech)

Sigma Software

Warsaw, Masovian Voivodeship, Poland (On-Site)
3 Months ago
Google - Cyber Engagement Lead, Mandiant Consulting

Google

Sydney, New South Wales, Australia (On-Site)
1 Month ago
Reversing Labs - Application Security Architect

Reversing Labs

Germany (Remote)
1 Month ago
Reversing Labs - Channel Account Manager (US Central & West)

Reversing Labs

United States (Remote)
2 Months ago
Barracuda Networks  Inc  - Security Automation Engineer

Barracuda Networks Inc

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
PwC - ETIC, SAP Security Associate - Cyber Security

PwC

Cairo, Cairo Governorate, Egypt (On-Site)
3 Months ago
Hasbro - IT Security Engineer - Cloud

Hasbro

Renton, Washington, United States (On-Site)
3 Months ago
BigID - Senior Solutions Engineer, Global Alliances

BigID

London, England, United Kingdom (On-Site)
3 Months ago
Microsoft - Senior Data Scientist

Microsoft

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Google - Security Engineer, Detection

Google

(On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Tekion Corp - Security Engineer II

Tekion Corp

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
Nissan Motor Corporation - Endpoint Security Manager

Nissan Motor Corporation

Thiruvananthapuram, Kerala, India (On-Site)
5 Months ago
Reversing Labs - Sales Development Representative (DACH Region)

Reversing Labs

Ireland (Remote)
1 Month ago
Varonis  - Security Operations Center (SOC) Expert

Varonis

Morrisville, North Carolina, United States (On-Site)
3 Months ago
PwC - CD&E-Quality Assurance SOC Analyst-Senior Associate-Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Microsoft - Digital Technology Specialists - Security - French Speaker

Microsoft

Dublin, County Dublin, Ireland (Hybrid)
1 Month ago
Reversing Labs - Application Security Architect

Reversing Labs

Germany (Remote)
1 Month ago
PwC - SRC_Cyber Resilience_Senior Associate

PwC

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Arrow Electronics - Analyst - SecOps

Arrow Electronics

Karnataka, India (On-Site)
3 Months ago
Zelis - Sr Soc Threat Analyst - Tier3

Zelis

Hyderabad, Telangana, India (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Gurugram, Haryana, India

Entrata - Product Designer

Entrata

Pune, Maharashtra, India (Hybrid)
4 Months ago
Sporty Group - IN QA Automation Engineer

Sporty Group

India (Remote)
9 Months ago
Avathon - Software Engineer (Scala_Backend)

Avathon

Bengaluru, Karnataka, India (On-Site)
4 Months ago
CAB Experiences - 2D Designer

CAB Experiences

Mumbai, Maharashtra, India (On-Site)
5 Months ago
PwC - IN- Senior Associate – D365 Technical -Ms Dynamics– Advisory  - Gurgaon

PwC

Gurugram, Haryana, India (On-Site)
4 Months ago
Gameskraft - Research Manager

Gameskraft

Bengaluru, Karnataka, India (On-Site)
6 Months ago
Joyride Games - VP Marketing

Joyride Games

India (Remote)
1 Year ago
Madison Logic - Sr. Backend Engineer

Madison Logic

Pune, Maharashtra, India (On-Site)
5 Months ago
The Walt Disney Company - Sr Pipeline Technical Director

The Walt Disney Company

Mumbai, Maharashtra, India (On-Site)
3 Months ago
THire Global Services - Drone Pilot

THire Global Services

Hyderabad, Telangana, India (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Kenvue - OT Security Engineer

Kenvue

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
PwC - Management Consulting-Finance-Associate2-Shanghai

PwC

Shanghai, Shanghai, China (On-Site)
4 Months ago
Axinous - Staff Software Development Engineer, New Product (Golang, Kubernetes, eBPF)

Axinous

California, United States (Remote)
1 Month ago
Discord - Senior Security Engineer, Enterprise Security

Discord

San Francisco, California, United States (Remote)
1 Month ago
Axinous - Technical Account Manager, UK

Axinous

England, United Kingdom (Remote)
1 Month ago
PwC - Cybersecurity Threat & Vulnerability | Manager | Cyber Security | Technology Consulting

PwC

Dublin, County Dublin, Ireland (On-Site)
4 Months ago
ESL FACEIT Group - EFG - Information Security Analyst

ESL FACEIT Group - EFG

United Kingdom (Remote)
1 Month ago
ION - Senior Security Architect

ION

Pisa, Tuscany, Italy (On-Site)
4 Months ago
ION - Cloud Engineer

ION

Budapest, Hungary (On-Site)
3 Months ago
PwC - Consultoría | Manager Ciberseguridad

PwC

Madrid, Community Of Madrid, Spain (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded