Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

Soffit Infrastructure Services

Compare

3.8

based on 76 Reviews

13 Soffit Infrastructure Services Jobs

SOC L2 Analyst

SOFFIT INFRASTRUCTURE SERVICES PRIVATE LIMITED

3.8

based on 76 Reviews

2-3 years

Kochi

1 vacancy

SOC L2 Analyst

Soffit Infrastructure Services

posted 16hr ago

Job Role Insights

Flexible timing

Key skills for the job

Customer Service Social Work Linux Administration Windows System Administration Information Security Network Security

+ 4 more

Job Description

Job brief

The Security Operation Centre (SOC) Information Security Analyst are the first level responsible for ensuring the protection of digital assets from unauthorized access, identify security incidents and report to customers for both online and on-premises. The position monitors and responds to security events from managed customer security systems as part of a team on a rotating 24 x 7 x 365 basis. They are alert and aggressive to filter out suspicious activity and mitigate risks before any incident occur. Your background should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring and vulnerability management. You should understand network security practices. Excellent customer service while solving problems should be a top priority for you.

Requirements

Must-haves:

2-3 Year Experience as SOC Analyst (Experience in SIEM Tool ELK & Wazuh preferable)
Process and Procedure adherence
General network knowledge and TCP/IP Troubleshooting
Ability to trace down an endpoint on the network, based on ticket information
Familiarity with system log information and what it means
Understanding of common network services (web, mail, DNS, authentication)
Knowledge of host-based firewalls, Anti-Malware, HIDS
Knowledge of creating and modifying the dashboards.
Understanding of common network device functions (firewall, IPS/IDS, NAC)
General Desktop OS and Server OS knowledge
TCP/IP, Internet Routing, UNIX / LINUX & Windows
Deep Knowledge in SIEM, Ticketing tool, EDR, Vulnerability Management, MimeCast, DMARC tool.
Excellent written and verbal communication skills.

Good to have:

Good to have industry certifications on any SIEM Platform, CEH, C|SA, CompTIA Security+ & Others

Main Responsibilities

Tier 1 SOC analysts are incident responders, remediating serious attacks escalated from junior analyst, assessing the scope of the attack, and affected systems, and collecting data for further analysis.
Work proactively to seek out weaknesses and stealthy attackers, review vulnerability assessments(CVEs) on monitored assets. Focus more on doing deep dives into datasets to understand whats happening during and after attacks.
Leading efforts to counter SLA breaches and anticipating the likelihood of future security alerts,incidents.
Monitor security events from the various SOC entry channels (SIEM, Tickets, Email and Phone),based on the security event severity and suspicious activities, escalate to managed service support teams, tier 2 information security specialists, and/or customer as appropriate to perform further investigation and resolution.
Works as a Team lead for the SOC Analysts helping them to ensure that corporate data and technology platform components are safeguarded from known threats.
Analyse the Events & incidents and identify the root cause.
Assist in keeping the SIEM platform up to date and contribute to security strategies as an when newthreats emerge.
Staying up to date with emerging security threats including applicable regulatory security requirements.
Bring enhancements to SOC security process, procedures, and policies. Document and maintain customer build documents, security procedures and processes.
Document incidents to contribute to incident response and disaster recovery plans.
Review critical incident reports and scheduled weekly & monthly reports and make sure they are technically and grammatically accurate.
Keep updated with new threats, vulnerabilities, create/contribute to use cases, threat hunting etc.
Keep updated with the likes of OWASP Top 10 vulnerabilities, Bleeping Computer articles etc., for acquiring the knowledge over current threats in security perspective.
Other responsibilities and additional duties as assigned by the security management team or service delivery manager.