Tata Consultancy Services hiring Security Operations Center Analyst in Chennai, Tamil Nadu, India | LinkedIn (2024)

Dear Candidates,

TCS is hiring for SOC Analyst

Experience:4-10 Years

Location:Chennai, Hyd,Bangalore

Must-Have : SIEM, EDR, MDR,SIEM Engineering, AV,XDR

Good-to-Have :Networking Concepts, Operating system concepts Knowledge

• Global monitor and response to identified threats and proactively searching for threats
• Must have had daily hands -on technical experience in working in Security operation Center and SIEM Tools like QRadar, Qroc, Sentinel, Splunk etc and EDR solutions Crowdstrike ,MS defender, Apex one XDR, Sentinel One and other EDR ,MDR ,XDR and SIEM solutions.
• Incident response - Handling daily cyber alerts and security incidents, and preps for a serious security incident
• Hands on experience working on Log Analysis, Malware Analysis, Phishing Analysis Cyber security incident response.
• Responsible for performing day to day activities such as Analysis and investigation of Logs and events from various log sources with the help of simple and advanced Correlation rules,dashboards, Reports and providing complete analysis to respective team/customer.
• Hands on experience working and deep Investigation skill on Log Analysis, Malware Analysis, Phishing Analysis and Cyber security incident response.
• Create and enhance internal processes and procedures
• Strong Experience SIEM Administration ,log source onboarding ,Use case creation and etc.
• Support the threat hunting and analytics platform
• Governance - Provides monthly updates to the security council (CIO, CRO), Chairs the monthly "Attestation" meeting where system owners confirm protections remain in place and operational, holds monthly/Quarterly key partner service reviews, develops executive updates, develops 4 Audit Committee Deep Dive cyber-decks and 2 annual full Cyber updates
• Implement new or expand existing features as they become available from the security vendor (Defense in Depth)
• Reducing false positive alerts with proper analysis post customer approvals with helps to improve the performance of Logs Monitoring
• Ensure timely response to any Security incident to minimize risk exposure and production down time of the environment.
• Safely acquire and preserve the integrity of cyber security data required for incident analysis to help determine the technical/operational impact, root cause(s), scope and nature of the incident
• Provide consulting on security best practices, awareness, and training.
• Investigate and respond to reported security incidents including documenting case status within Service Now and other ticketing toolsand reporting findings to customers and management
• Phishing - Watches for phishing campaign and stops/removes major ones from our environment, manages phishing exercise environment - conducts phishing exercises - provides reports on global click rates - and various breakdowns (regional, difficulty, etc.)
• Work with security tools team and senior Cyber Defense investigators to identify suspicious activity and security notifications including SIEM alerts, system reports, security tool alerts, etc
• Preparation of Daily, weekly Monthly Reports with analysis and presenting the same to the customer in weekly call
• Candidate should have sufficient knowledge of SOC/ operation security tools which will include global monitoring of threats, understanding ways to prevent intrusion/ attacks on applications, vulnerability management, SIEM, Network traffic analysis and others
• Strong Experience in Network ,IPS,IDS detection and Logs Analysis.

Regards,

S.Shanbaga

TCS TAG HR.