Philips Senior Software Technologist - Cloud 

India, Karnataka, Bengaluru 

446016923

The SOC Analyst’s main objectives are to contribute following a multidisciplinary approach to the key SOC operational tasks: content delivery, detection, monitoring and response.

SOC Analysts integrate into a multidisciplinary pool of resources with the ability to perform in several multi-functional aspects in Security Operations which are equally needed to deliver a proactive and avant-garde cyber defensive capability.

Incident Detection & Response:

• Manage security incidents from identification to conclusion, ensuring timely and effective resolution.
• Conduct forensic investigations to support incident response efforts.
• Develop and deliver content for SIEM and SOAR platforms, such as scripts, use cases, queries for log management, and automated forensic data gathering.
• Engage in anomaly detection and malware hunting activities to proactively mitigate potential threats.

Monitoring and Reporting:

• Continuously monitor cybersecurity activity to identify and mitigate potential threats.
• Prepare detailed reports on SOC activities, incident response outcomes, and other key metrics.
• Enhance SOC exposure by communicating findings and achievements to stakeholders, demonstrating the SOC's value to the organization.

Coordination and Planning:

• Collaborate with cross-functional teams to implement and refine SCRUM/Kanban methodologies within the SOC.
• Develop and maintain SOC procedures and runbooks to enhance operational efficiency.
• Assist in strategic planning and professionalization efforts to optimize team workflows and outputs.
  

• 4 years prior experience in a Computer Emergency Response Team (CERT/CIRT), IT security environment, or law enforcement.
• Preferred certifications: GCIH, GCIA, GCFE, GCFA, GREM, OSCP, or equivalent experience.
• Proficient knowledge of SIEM & SOAR platforms, Log management, IDS/IPS, endpoint security solutions.
• Familiarity with network infrastructure, cloud environments, operating systems (Windows/Linux), applications, and protocols.
• Experience with building and maturing a Security Operations Center is a plus.
• (Administrative) experience with ServiceNOW, particularly with the ServiceNOW Security Operations module, is a plus.
• Excellent communication skills, both verbal and written, to effectively convey technical concepts to business stakeholders and produce clear incident reports.
• Strong analytical skills for in-depth investigation and problem-solving.
• Fluency in English, both spoken and in writing (minimum B2)

This role is an office role.

We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help the lives of others.

• Learn more about our business .
• Discover our rich and exciting history .
• Learn more about our purpose .