Upload Button Icon Add office photos
filter salaries All Filters

608 Piktorlabs Jobs

SOC Analyst III

3-5 years

Thiruvananthapuram

1 vacancy

SOC Analyst III

Piktorlabs

posted 2mon ago

Job Description

Monitor cyber security s for our global customers in a 24x7x365 operations team under minimal supervision of Team Lead. Mentor junior members of the team as well as assist the Team Lead in supervision.
Outcomes:
  1. Mentor junior members of the team to help them learn and achieve their full potential.
  2. Respond independently to low and medium complexity incidents
  3. Assist the Team Lead in supervisory activities leading to a high-performance organisation.
  4. Under the overall supervision of Team Lead ensure that cyber security s from the SIEM and multiple sources are dealt with by the entire team within SLA. Communicate and escalate as per defined process.
  5. Train and motivate the team to follow documented playbook.
  6. Assist the Team Lead in ensuring quality of service across the team.
  7. Review and recommend topics for inclusion or upgrade in the playbook as well as new Use Cases or the refinement of existing ones.
  8. Adherence to defined SOC processes including housekeeping tasks. Adherence to the Information Security policies as defined by the company and customer.
Measures of Outcomes:
  1. Innovation: Case Studies and value delivered to customer / Cyberproof.
  2. Team adherence to SLA as agreed with the customer.
  3. Productivity (Number of s addressed)
  4. Quality - Percent of tickets that met quality norms
  5. Adhere to process - Nil NC during audits
  6. Evidence of skill development including training certification etc.
Outputs Expected:
Cyber Security Monitoring :
  1. Work in accordance with the Playbook
    under supervision of the team lead to monitor s in the CDC Platform / SIEM Tool
    etc. Ensure appropriate response in line with the SLA.

Cyber Security Incident Management:
  1. Process s through analysis
    triage and resolution.
  2. Communication and escalation as per defined process
  3. Documentation including annotation in CDC / SIEM work log to ensure audit trail
    as per defined standards and quality requirements.
  4. Reporting

Team Player:
  1. Assist the team lead in ensuring Continuous Learning as well as in delivering on innovation and optimization
  2. Mentor junior team members where possible.

Reporting:
  1. Assist Team Lead in generation of required reports
    management information and analytics.

Other Responsibilities:
  1. Ensure that the housekeeping tasks are performed
  2. Undertake activities for example quality checks
    reviews
    etc. to ensure that the team as a whole are performing to standard requirements
  3. Stand in for the team lead when required at customer meetings
    etc.
  4. Assist in achieving near zero false-positives
    etc.
Skill Examples:
  1. High proficiency in the use of CDC SIEM and other relevant tools
  2. Skill to review and recommend Play Book improvements Use Case Refinements New Use Cases Process Improvements etc.
  3. Excellent logical problem-solving ability and analytical skills for incident triage and analysis
  4. Excellent oral and written communication skills.
  5. Continually learn new technology and stay updated on cyber threats. Assist and motivate team members to do likewise
  6. Ability to work in rotating shifts and also be on-call outside of shift hours on a regular and recurring basis.
  7. Possess unimpeachable personal and professional integrity. Individuals will be required to submit to a background check.
Knowledge Examples:

3 to 5 years experience as SOC operations with SOC of global organization.

  1. University Degree in Cyber Security (no back papers) / Bachelor s in Science or Engineering with training in cyber security
  2. Highly proficient in Cybersecurity Incident Management process.
  3. Highly proficient and up to date in cyber security s and incidents. Intermediate understanding of enterprise IT Infrastructure including Networks Firewalls OS Databases Web Applications etc.
  4. Understanding of ISMS principles and guidelines; relevant frameworks (e.g. ISO27001)
  5. Desirable - Training / Certification in Ethical Hacking Tools Process and Frameworks related to cyber security etc.

SOC Analyst L2 is an operational role, focusing on ticket quality and security incident deeper investigation and will be responsible to handle the escalated incidents from Level 1 team within SLA. Responsibilities: SOC Analyst L2 would work closely with SOC L1 team, L3 team & customer and responsible for performing deeper analysis and need to interact with client in daily calls and need to take the responsibility of handling the True Positive incidents on time. When L1 escalates an incident to L2, need to conduct more analysis and, if needed, escalate to the customer/L3 team, or L2 analyst must advise L1 team members until the incident is resolved. Perform deep analysis to security incidents to identify the full kill chain Perform remediation steps according to the findings or initiate steps for remediation Prepare RCA for major incidents Handle L2 and above level technical escalations from L1 Operations team and resolve within SLA. Identify the security gaps and need to recommend new rules/solution to L3/Customer Need to suggest finetuning for existing rules based on the high count/wherever required Create and manage the Incident handling playbook, process runbooks and ad-hoc documents whenever needed Recommend finetuning for s with logic and threshold, and possibly the query as well for the SIEM Recommend new usecases with logic and threshold, and possibly the query as well for the SIEM Respond to clients requests, concerns, and suggestions Proactively support L1 team during an incident. Performs and reviews tasks as identified in a daily task list. Ready to work in 24x7 rotational shift model including night shift Incident detection, triage, analysis and response. Coordinating with customers for their security related problems and providing solutions. Share knowledge to other analysts in their role and responsibilities Provide knowledge transfer to L1 such as advance hunting techniques, guides, cheat sheets etc Provide oncall support on rotational basis for off hours Knowledge Experience: Minimum of 3 years of experience in Cyber security, SOC At least 2 years of working in the SOC Proficient in Incident Management and Response In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Up to date in cyber security s and incidents; intermediate understanding of enterprise IT Infrastructure including Networks Firewalls OS Databases Web Applications etc. Understanding of ISMS principles and guidelines; relevant frameworks (e.g. ISO27001) Desirable - Training / Certification in Ethical Hacking/SIEM Tool etc. Experience in working on multiple SIEM tools (Sentinel, Qradar, Splunk) Experience in working with multiple EDR tools (Crowdstrike, CarbonBlack EDR, Cybereason, MS Defender for endpoint, sentinelone) Experience in handling Linux servers, familiar with Linux OS and commands Additional Desired Skills: Strong verbal and written English communication Strong interpersonal and presentation skills Ability to work with minimal levels of supervision Responsible for working in a 24x7 Security Operation centre (SOC) environment. Essential Skills: Knowledge and hands-on experience with Azure Sentinel, Microsoft 365 Defender, Microsoft Defender for Cloud Apps & Identity Protection. Continuous Learning innovation and optimization: Ensure completion of learning programs as suggested by Managers Suggest ideas that will help innovation and optimization of processes. Help develop the ideas into proposals. Provide suggestions to reduce the manual work Teamwork: Assist L1 team members where possible


Employment Type: Full Time, Permanent

Read full job description

Prepare for SOC Analyst roles with real interview advice

What people at Piktorlabs are saying

What Piktorlabs employees are saying about work life

based on 12 employees
73%
100%
90%
100%
Flexible timing
Monday to Friday
No travel
Day Shift
View more insights

Piktorlabs Benefits

Work From Home
Team Outings
Health Insurance
Free Transport
Child care
Gymnasium +6 more
View more benefits

Compare Piktorlabs with

TCS

3.7
Compare

Accenture

3.9
Compare

Wipro

3.7
Compare

Cognizant

3.8
Compare

Capgemini

3.8
Compare

HDFC Bank

3.9
Compare

ICICI Bank

4.0
Compare

Infosys

3.7
Compare

HCLTech

3.6
Compare

Tech Mahindra

3.6
Compare

Genpact

3.9
Compare

Teleperformance

3.9
Compare

Concentrix Corporation

3.8
Compare

Axis Bank

3.8
Compare

Amazon

4.1
Compare

Jio

3.9
Compare

Reliance Retail

3.9
Compare

IBM

4.1
Compare

iEnergizer

4.7
Compare

LTIMindtree

3.9
Compare

Similar Jobs for you

SOC Analyst at Cyberproof

Thiruvananthapuram

3-5 Yrs

₹ 5-7 LPA

SOC Analyst at UST

Bangalore / Bengaluru

3-5 Yrs

₹ 6-10 LPA

SOC Analyst at Cyberproof

Bangalore / Bengaluru

3-5 Yrs

₹ 5-7 LPA

SOC Analyst at STL - Sterlite Technologies Limited

Ahmedabad

1-4 Yrs

₹ 5-9 LPA

SOC Analyst at Smart IMS Inc.

Hyderabad / Secunderabad

5-9 Yrs

₹ 5-9 LPA

SOC Analyst at Flexis It

New Delhi

3-7 Yrs

₹ 6-7 LPA

SOC Analyst at Virtusa Consulting Services Pvt Ltd

Chennai

4-7 Yrs

₹ 5-9 LPA

SOC Analyst at Pitney Bowes India Pvt Ltd

Pune

5-8 Yrs

₹ 7-10 LPA

Analyst at Amgen Inc.

Hyderabad / Secunderabad

0-5 Yrs

₹ 3-8 LPA

SOC Analyst at Testriq QA Lab, LLP

Mumbai

2-6 Yrs

₹ 4-8 LPA

SOC Analyst III

3-5 Yrs

Thiruvananthapuram

2mon ago·via naukri.com

Lead I - Cloud Infrastructure Services - Azure Infra

5-7 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Software PLM Engineer

9-12 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Product Manager I

9-12 Yrs

Thiruvananthapuram

3d ago·via naukri.com

Lead I - Manual Testing

5-7 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Lead I - Purchase Requisition

5-7 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Platform Debug Engineer

3-5 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Developer II - Software Engineering

2-3 Yrs

Thiruvananthapuram

3d ago·via naukri.com

Lead I - Backup-Commvault-Network

5-7 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Associate III - BPM

3-5 Yrs

Thiruvananthapuram

3d ago·via naukri.com
write
Share an Interview