Associate Manager- Security Monitoring:

Roles/Responsibilities:

·        Experience in SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis, Incident Response

·        Responsible for the technical Administration or troubleshooting in SIEM ensuring the efficient functionality of the solution

·        Responsible for Incident Validation, Incident Analysis, Solution Recommendation,

·        Good knowledge on implementation, installation, integration troubleshooting and overall functionalities of Arcsight

·        ArcSight rule base fine tuning, Ongoing log source modifications, Configuration/policy changes, General SIEM Administration, SIEM Content Development

·        Troubleshooting of an incident within IT Security incident response teams of SOC.

·        Apply investigation techniques to document root cause and impact of detected computer security incidents

·        Maintains awareness of new and emerging cyber-attack threats with potential to harm company systems and networks. Devises and implements countermeasures to mitigate potential security threats.

·        Assists with the development and maintenance of IT security measurement and reporting systems to aid in monitoring effectiveness of IT Security programs.

·        Assists with the development, revision, and maintenance of Standard Operating Procedures and Working Instructions related to IT Security.

·        Good Coordination skills with various other teams for faster resolution/completion.

·        Good to have threat hunting knowledge.

Education/Skills:

 

·        BE/B.Tech or equivalent with minimum 4-7 years of experience

·        Work experience of minimum 3 years in SOC Incident Handling, Incident Response Trend Analysis, administration/monitroing of SIEM Tool like ArcSight, LogRhythm SIEM, Threat Intelligence, Malware Analysis,

·        Ability to adapt and follow the processes and guidelines

·        Possess an impeccable work ethic and a high degree of integrity

·        Good Analytical & Problem Solving skills

·        Able to communicate with technical staff/management

·        Flexible to work in 24/7 environments

·        Highly motivated & customer centric