Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

CircleCI

Compare

5.0

based on 1 Review

15 CircleCI Jobs

Senior Analyst, Cyber Defence (SOC) - SOAR Automation

Circles

5.0

based on 1 Review

3-6 years

Bangalore / Bengaluru

1 vacancy

Senior Analyst, Cyber Defence (SOC) - SOAR Automation

CircleCI

posted 2mon ago

Job Role Insights

Flexible timing

Key skills for the job

Computer Science Python Recruitment Javascript Linux Automation

+ 4 more

Job Description

Your duties encompass managing threat intelligence, monitoring security events, conducting security incident investigations, performing forensic analysis, and coordinating security incident responses for Circles global systems and data. You will have a pivotal role in carrying out cyber security incident response, implementing SOAR platform and embed automation in SOC operations.

What we are looking are looking for: -

Essential :

Bachelor s degree (or equivalent experience) in Computer Science, Engineering, or other technical field.
3+ years of direct information security and or Security Operations Center (SOC) experience in a global IT environment.

Demonstrate a track record of successfully correlating events and conducting effective assessments of observed indicators of attacks (IOA).
Showcase expertise in utilizing Security Information and Event Management (SIEM) systems, coupled with a refined alert triage process.
Leverage substantial experience in building sophisticated Security Orchestration, Automation, and Response (SOAR) workflows.
Possess a deep understanding of the OWASP Top 10 and the ability to intricately link vulnerabilities to real-world threat scenarios.
Apply strong analytical and problem-solving skills to proactively identify and address emerging security challenges.
Expertise in scripting (e.g., Python, Bash) and programming languages (e.g., PowerShell, JavaScript) is vital for automating tasks and bolstering incident response capabilities, reflecting the dynamic nature of cybersecurity. Adaptability and ongoing learning are essential traits in our environment.

Requirements:

Alert Triage :

Analyze and assess security alerts with precision to identify potential threats.
Prioritize alerts based on severity, potential impact, and risk to the organization.
Execute incident response processes and procedures to effectively address security incidents.
Demonstrate technical proficiency in using alert triage tools, including SIEM systems and related security technologies.
Effectively communicate findings, collaborate with security professionals, and document triage processes accurately.
Distinguish between false positives and actual security incidents with attention to detail.
Apply knowledge of common attack vectors, tactics, techniques, and procedures (TTPs).
Collaborate with team members and cross-functional departments to ensure effective response to security incidents.
Stay updated on the latest threats, vulnerabilities, and security technologies through continuous learning.
Proficient in log parsing, pipeline creation, and filtering techniques, along with data normalization for improved alert triaging and ability to apply contextual analysis during log processing to grasp the broader security implications of entries.

SOAR Automation Experience

Engaged in hands-on activities to build and refine automated workflows within a SOAR framework.
Integrated the SOAR platform with diverse security tools and APIs, employing both pre-built and custom applications.
Identified, assessed, and proposed innovative improvements for SOAR processes and playbooks.
Proficient in employing scripting languages like Bash, Go, Python, or JSON to automate SOC functions.
Demonstrated strong proficiency in Linux, shell scripting, and executing API and Microservices calls.
Experience with SOAR tools such as SwimLane or Shuffle SOAR framework would be an added benefit.
OSCP, GCIH/GCIA certifications or has plan to obtain in future is good to have.

Employment Type: Full Time, Permanent

Functional Areas: Software/Testing/Networking

Read full job description