Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Verint SOC L2 Analyst 
India, Karnataka, Bengaluru 
26054405

13.08.2024

Overview of Job Function:

The SOC Tier 3 role is a critical position within the organization's security operations center (SOC). The SOC Tier 3 role is responsible for classifying, investigating, determining the outcome, and creating playbooks for SOC events.

The SOC Tier 3 role will work closely with the SOC Tier 2 team to ensure that security incidents are effectively and efficiently managed. The SOC Tier 3 role will be responsible for performing detailed investigations of security incidents, including incident classification, analysis, and determination of the outcome.

Based on the outcome of investigations, the SOC Tier 3 role will create playbooks that can be used by the SOC Tier 2 team to quickly and effectively respond to similar incidents in the future. The SOC Tier 3 role will also be responsible for developing and maintaining the playbooks, ensuring that they are up-to-date, effective and communicated to the SOC Tier 2 team.

Principal Duties and Essential Responsibilities:

  • Incident Classification: Classifying security incidents and determining their severity.
  • Incident Investigation: Investigating security incidents, including analysis of data and systems, to determine the cause and outcome.
  • Playbook Creation: Creating playbooks that can be used by the SOC Tier 2 team to respond to similar incidents in the future.
  • Playbook Maintenance: Maintaining playbooks to ensure they are up-to-date and effective.
  • Knowledge Transfer: Providing training and knowledge transfer to the SOC Tier 2 team to ensure they are prepared to respond to similar incidents in the future.
  • The ideal candidate for the SOC Tier 3 role will have a strong background in cybersecurity and incident response, as well as experience in security operations center environments. The SOC Tier 3 role requires excellent analytical skills, attention to detail, and the ability to work under pressure in a fast-paced environment. The SOC Tier 3 role must have excellent communication and collaboration skills, able to work effectively with both technical and non-technical stakeholders.

Minimum Requirements:

  • B.S (Computer Science/Engineering) or equivalent experience and/or one of the following:
    • AWS certification(s): Solutions Architect and/or Security
  • 5 years of experience in a security operations center (SOC) or incident response role
  • Strong understanding of cybersecurity principles, tools, and techniques, including firewall, intrusion detection/prevention systems, and malware analysis
  • Strong experience with AWS including native security services such as GuardDuty
  • Experience with Windows and Linux based applications.
  • Excellent analytical and problem-solving skills.
  • Strong communication and collaboration skills.

Preferred Skills:

  • Experience with Security Orchestration, Automation, and Response (SOAR) platforms and other security automation tools.
  • Proficient in scripting languages such as Python, PowerShell, and Bash.
  • Knowledge of WAFs such as AWS WAF, Imperva or F5 including analyzing blockages and creating exceptions
  • Familiarity with container security, policy management and enforcement
  • Detail oriented and highly organized with the ability to manage multiple priorities and parallel projects.
  • Excellent organization, time management, and project skills.