Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

For Employers

Premium Employer

Adani Group

Compare

3.9

based on 1.4k Reviews

Proud winner of ABECA 2024 - AmbitionBox Employee Choice Awards

Top Rated Energy & Power Company - 2024

1 Adani Group Security Operations Center Lead Job

SOC Lead

Adani Group

3.9

based on 1.4k Reviews

5-10 years

Ahmedabad

1 vacancy

SOC Lead

Adani Group

posted 4d ago

Job Role Insights

Flexible timing

Key skills for the job

Computer Science Social Work Information Technology Linux Administration Forensic Microsoft Power BI

+ 3 more

Job Description

Educational qualifications:

Bachelor s degree relevant to Information Technology, Computer Science/Engineering (or equivalent).
Advanced certification desirable GCIH, GCIA, GCFE, GREM, GCFA, GSEC

Experience:

Minimum 5-10 years in an Incident Responder/Handler role
Strong experience in SIEM (Security Incident and Event Monitoring) processes and Products (e.g., ArcSight, Microsoft Sentinel etc.)
Full understanding of Tier 1 responsibilities/duties and how the duties feed into Tier 2. The ability to take lead on incident research when appropriate and be able to mentor junior analysts
Advanced knowledge of TCP/IP protocols
Knowledge of Windows, Linux operating systems
Knowledge of Intrusion Detection Systems (IDS) and SIEM technologies; Splunk or Sentinel experience
Knowledge on threat hunting
Deep packet and log analysis
Some Forensic and Malware Analysis
Cyber Threat and Intelligence gathering and analysis
Bachelor s degree or equivalent experience

Responsible for handling day-to day operations to monitor, identity, triage and investigate security events from various Endpoint (EDR), Network and Cloud security tools and detect anomalies, and report remediation actions.
Responsible for detecting and responding to security incidents, coordinating cross-functional teams to mitigate and eradicate threats.
Effectively investigative and identify root cause findings then communicate findings to stakeholders including technical staff, and leadership.
Work with key stakeholders to implement remediation plans in response to incidents.
Author Standard Operating Procedures (SOPs) and training documentation when needed.
Generates end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty.
Responsible for working in a 24/7 environment including night shifts and the shifts are decided based on the business requirement.
Conduct malware analysis, host and network, forensics, log analysis, and triage in support of incident response.
Security Utilize state of the art technologies such as host forensics tools (FTK/Encase), Endpoint Detection & Response tools, log analysis (Sentinel) and network forensics (full packet capture solution) to perform hunt and investigative activity to examine endpoint and network-based data.
Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis, and incident response.
Develop and build security content, scripts, tools, or methods to enhance the incident investigation processes