Sign In
 [New User? Sign Up]
Mobile Version

Tech Lead/SOC Architect

Bengaluru, KA
Job Code:
  • IT
Applying for this job will take you to an external site
  • Shortlist
  • Email Friend
  • Print

Job Details

Key ResponsibilitiesMajor responsibilities include providing leadership to the RIOC SOC team. Other responsibilities include with the technical responsibilities within a Security Operations Center (SOC) environment for a large, worldwide company. Be the first escalation point for SOC Analyst surrounding security alerts, events and incidents.Provide security guidance or expertise to other Service Desk or Network Operations Center (NOC) analysts for tickets or events.Evaluate reported tickets and events for trends related to security attacks or incidents.Monitor and interpret events and alerts from security monitoring equipment such as intrusion detection/prevention systems (IDS/IPS), firewall logs, web proxies, email malware gateways, full packet capture devices, endpoint security such as anti-virus/anti-malware, security tools i.e Splunk, IBM Qradar, Arcsight.Provide people management for SOC Analysts.Performance monitoringConflict ResolutionTechnical and non-technical training to staffReport on existing metrics and key performance indicators (KPI) and develop additional robust and meaningful metrics and KPIs to measure the effectiveness of the SOCCreate and distribute reports surrounding security incidents and events, SOC performance, and other reports that will be utilized by Security Operations and upper management for review and monitoring of events and activities Required SkillsMust be having expertise in Building and running advanced security operations centers.Having hands on expertise ino Infrastructure review for new projects, topology review, and Security Assessmento Security Architecture design, Security assessment for infrastructure and applications.o Experienced in establishing security operation centers including advanced threat management, World class Incident Response, SIEM and Log Management, IDS/IPS, cybercrime investigations and security monitoring. o Experienced in remediating security incidents by interfacing with internal customer teams and other tool vendorso Providing guidance and expert consulting to CISOs o Firewall Assessment of different vendors, namely Cisco, Checkpoint, Juniper and Pale Alto, Application Security assignments, VA and PT. Sound knowledge ofo various security tools Splunk, IBM Qradar, Arcsight (across all domains of security)o Industry standards and best practiceso TCP/IP networking and standard protocols (FTP, SMTP, HTTP, SNMP, etc.)o Various operations systems including Windows, UNIX, LINUX, IOS etc.o Cloud security, Internet of Things security, Mobile and Big Data securityo Hands on experience in end to end Information Risk Management lifecycleExperience working on global teams across time zones, cultures, and languages
Degree: MCA/ PGDCA | ME/ M.Tech./ MS (Engg/ Sciences)

Additional Degree: BE/ B.Tech (Engineering) | BCA (Computer Application)

Experience: 2-7


Application Programming | Software Engineer | System Administration | System Security
Applying for this job will take you to an external site


© Copyright 2015 Al Nisr Publishing LLC - powered by Gulf News