SOC Analyst

Company: Atech Cloud (CloudZEN 365 services pvt ltd)

Location: Ahmedabad

About Us: Atech is an innovative and expanding Cyber Security managed services provider. We are looking to recruit both Tier I and Tier II SOC Analysts to join our dynamic team. CloudZEN365 (Atech Cloud) has been a great pioneer in feeding the fire of young Techies like you. We are a global leader in the technology arena, and there is nothing that can stop us from growing together.

Position Overview: The SOC Analysts will provide security technical expertise in Microsoft Azure and Microsoft 365. This role will be responsible for investigating and remediating alerts in the Microsoft Azure and 365 security products.

Responsibilities:

Tier I SOC Analyst (1-3 years of experience):

• Provide security research to understand new and existing information security threats.
• Investigate suspicious activities, contain, and prevent them.
• Rapidly interact with on-demand requests with minimal assistance.
• Help drive pursuits and engage in complex deals, matching outcomes to expectations.
• Work easily with diverse and dynamic teams.
• Operate in a matrix management model.
• Monitor client systems for security events raised in Microsoft 365 Security Centre.
• Investigate and remediate incidents in Microsoft 365 Security Centre.
• Remediate Secure Score recommendations in Microsoft 365 and Azure.
• Provide Microsoft Endpoint and Intune protection.
• Investigate and remediate issues flagged in the Microsoft Azure Security Centre.
• Monthly reporting on client vulnerabilities and actions.
• Work on tickets in ConnectWise ticketing system and Azure Sentinel.

Tier II SOC Analyst (3-4 years of experience):

• Be a face of Atech Security, both internally and externally.
• Analyze security incidents using Microsoft Sentinel (SIEM).
• Operate in a rotating 24x7 shift environment, including daytime, night-time, and weekend work.
• Actively engage with customers on potential security incidents.
• Proactively analyze event data to adapt and improve detection capabilities.
• Support Tier I analysts with technical support and guidance.
• Conduct incident response and recovery.
• Review processes and procedures and stay up to date with the latest security developments.
• Gather incoming threat intelligence and respond accordingly.
• Maintain asset reports.

Skills and Qualifications:

For Both Tiers:

• Excellent verbal and written English communication skills.
• Good understanding of cybersecurity concepts.
• Knowledge of the Cyber Security Industry with hands-on experience in managed services and Microsoft Security Cloud portfolio, including Microsoft Sentinel, Microsoft Defender for M365, and Microsoft Defender for Cloud.
• Hands-on understanding of cloud service providers (AWS, Azure & GCP).
• Fundamental knowledge of networking protocol stack.
• Knowledge of operating system internals (Windows, macOS, Android, iOS, Linux).
• Ability to think outside the box”.
• Attention to detail while seeing the bigger picture.
• Self-initiative and strong time management.
• Growth mindset and the ability to accept and embrace feedback.
• Pro-active and enthusiastic with a can-do attitude.
• Ability to work on own initiative as well as being a team player.
• Willingness to self-develop knowledge according to market, customer, and Atech requirements.
• Some understanding of the threat landscape and emerging trends.

Advantageous:

• Microsoft certifications such as SC-200, AZ-900, AZ-500, or MS-500.
• Knowledge of Azure Sentinel, workbook, playbook, KQL, and Azure Logic App.
• Skills in Windows Server, Active Directory, Group Policy, Exchange Server, SQL Server, and System Centre.
• Previous experience working as a security engineer or as part of a SOC.
• Experience managing firewalls, IDS/IPS, and Security Incident and Event Management (SIEM).
• Experience coordinating vulnerability management.
• Expertise in threat modeling and use case development.
• Ability to review policies of security monitoring tools based on security concepts and logical approaches.
• Preferred knowledge about Microsoft 365 Security Suites.

Company Structure and Alignment:

• Role reports to the SOC Team Leader
• Works closely with other departments within the company to ensure client satisfaction and problem resolution.