Verint SOC L2 Analyst 

India, Karnataka, Bengaluru 

26054405

Overview of Job Function:

The SOC Tier 3 role is a critical position within the organization's security operations center (SOC). The SOC Tier 3 role is responsible for classifying, investigating, determining the outcome, and creating playbooks for SOC events.

The SOC Tier 3 role will work closely with the SOC Tier 2 team to ensure that security incidents are effectively and efficiently managed. The SOC Tier 3 role will be responsible for performing detailed investigations of security incidents, including incident classification, analysis, and determination of the outcome.

Based on the outcome of investigations, the SOC Tier 3 role will create playbooks that can be used by the SOC Tier 2 team to quickly and effectively respond to similar incidents in the future. The SOC Tier 3 role will also be responsible for developing and maintaining the playbooks, ensuring that they are up-to-date, effective and communicated to the SOC Tier 2 team.

Principal Duties and Essential Responsibilities:

• Incident Classification: Classifying security incidents and determining their severity.
• Incident Investigation: Investigating security incidents, including analysis of data and systems, to determine the cause and outcome.
• Playbook Creation: Creating playbooks that can be used by the SOC Tier 2 team to respond to similar incidents in the future.
• Playbook Maintenance: Maintaining playbooks to ensure they are up-to-date and effective.
• Knowledge Transfer: Providing training and knowledge transfer to the SOC Tier 2 team to ensure they are prepared to respond to similar incidents in the future.
• The ideal candidate for the SOC Tier 3 role will have a strong background in cybersecurity and incident response, as well as experience in security operations center environments. The SOC Tier 3 role requires excellent analytical skills, attention to detail, and the ability to work under pressure in a fast-paced environment. The SOC Tier 3 role must have excellent communication and collaboration skills, able to work effectively with both technical and non-technical stakeholders.

• B.S (Computer Science/Engineering) or equivalent experience and/or one of the following:
  • AWS certification(s): Solutions Architect and/or Security
• 5 years of experience in a security operations center (SOC) or incident response role
• Strong understanding of cybersecurity principles, tools, and techniques, including firewall, intrusion detection/prevention systems, and malware analysis
• Strong experience with AWS including native security services such as GuardDuty
• Experience with Windows and Linux based applications.
• Excellent analytical and problem-solving skills.
• Strong communication and collaboration skills.