Capegemini - Security Operations Center Analyst - SIEM (6-12 yrs)

Security Operations Center Analyst

Exp : 6 - 12 years

Job Description :

- Monitoring Security Information and - Event Management (SIEM) platform for security alerts, preferably Splunk Enterprise Security.

- Experience with Banking & Finance Customers.

- Providing metrics and reports around security monitoring by designing dashboards for asset owners and management consumption.

- Leveraging existing technologies within the organization to expand the scope of coverage of the security monitoring service.

- OS Full-Service Management/Troubleshooting and have performed Device Level/SIEM Log Analysis.

- Recognize threats such as but not limited to DDOS, APT lifecycle (including Data exfiltration attempts).

- Providing escalation response for security events including but not limited to intrusion detection, malware infections, denial of service attacks, privileged account misuse and network breaches.

- Event management includes triage, correlation, and enrichment of individual events to either rule out as false positive, trigger standard detective and corrective responses, or escalating as a security incident.

Primary Skills :

- Splunk Enterprise Security

- Security Information and Event Management (SIEM) Monitoring

- Incident Response

Secondary Skills :

- Ability to communicate efficiently within a team environment.