Good-to-Have :Networking Concepts, Operating system concepts Knowledge
Global monitor and response to identified threats and proactively searching for threats
Must have had daily hands -on technical experience in working in Security operation Center and SIEM Tools like QRadar, Qroc, Sentinel, Splunk etc and EDR solutions Crowdstrike ,MS defender, Apex one XDR, Sentinel One and other EDR ,MDR ,XDR and SIEM solutions.
Incident response - Handling daily cyber alerts and security incidents, and preps for a serious security incident
Hands on experience working on Log Analysis, Malware Analysis, Phishing Analysis Cyber security incident response.
Responsible for performing day to day activities such as Analysis and investigation of Logs and events from various log sources with the help of simple and advanced Correlation rules,dashboards, Reports and providing complete analysis to respective team/customer.
Hands on experience working and deep Investigation skill on Log Analysis, Malware Analysis, Phishing Analysis and Cyber security incident response.
Create and enhance internal processes and procedures
Strong Experience SIEM Administration ,log source onboarding ,Use case creation and etc.
Support the threat hunting and analytics platform
Governance - Provides monthly updates to the security council (CIO, CRO), Chairs the monthly "Attestation" meeting where system owners confirm protections remain in place and operational, holds monthly/Quarterly key partner service reviews, develops executive updates, develops 4 Audit Committee Deep Dive cyber-decks and 2 annual full Cyber updates
Implement new or expand existing features as they become available from the security vendor (Defense in Depth)
Reducing false positive alerts with proper analysis post customer approvals with helps to improve the performance of Logs Monitoring
Ensure timely response to any Security incident to minimize risk exposure and production down time of the environment.
Safely acquire and preserve the integrity of cyber security data required for incident analysis to help determine the technical/operational impact, root cause(s), scope and nature of the incident
Provide consulting on security best practices, awareness, and training.
Investigate and respond to reported security incidents including documenting case status within Service Now and other ticketing toolsand reporting findings to customers and management
Phishing - Watches for phishing campaign and stops/removes major ones from our environment, manages phishing exercise environment - conducts phishing exercises - provides reports on global click rates - and various breakdowns (regional, difficulty, etc.)
Work with security tools team and senior Cyber Defense investigators to identify suspicious activity and security notifications including SIEM alerts, system reports, security tool alerts, etc
Preparation of Daily, weekly Monthly Reports with analysis and presenting the same to the customer in weekly call
Candidate should have sufficient knowledge of SOC/ operation security tools which will include global monitoring of threats, understanding ways to prevent intrusion/ attacks on applications, vulnerability management, SIEM, Network traffic analysis and others
Strong Experience in Network ,IPS,IDS detection and Logs Analysis.
Regards,
S.Shanbaga
TCS TAG HR.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
IT Services and IT Consulting
Referrals increase your chances of interviewing at Tata Consultancy Services by 2x
See who you know
Get notified about new Security Operations Center Analyst jobs in Chennai, Tamil Nadu, India.
Address: Apt. 994 8891 Orval Hill, Brittnyburgh, AZ 41023-0398
Phone: +26417467956738
Job: District Marketing Strategist
Hobby: Embroidery, Bodybuilding, Motor sports, Amateur radio, Wood carving, Whittling, Air sports
Introduction: My name is Prof. An Powlowski, I am a charming, helpful, attractive, good, graceful, thoughtful, vast person who loves writing and wants to share my knowledge and understanding with you.
We notice you're using an ad blocker
Without advertising income, we can't keep making this site awesome for you.