Security Operations Center Analyst

Skills Required 4+ years’ for L2 and 8+ years for L3Having knowledge / experience on any SIEM tool (preferably SPLUNK) and SOAR tools ( preferably TINES).Exposure to Mitre framework and equivalent, Hands on experience in EDR platforms ( CROWDSTRIKE ) and threat analysis, threat hunting / incident response experience.Experience in analysing security incidents and responding to them in methodical mannerKnowledge in Network security/ System Security/ Endpoint Security.Experience of Event Monitoring and analysis and escalations. Provide inputs for content management.Experience on Monthly, Weekly and daily reporting.Willing to work on 24/7 operations.Review SIEM escalated incidents and qualify true positivesProvide a monthly trend and security analysis summary reportProvide SIEM event/Incident analytics supportProvide log analysis summary and recommendations on detection/protection of incidentsPerform advanced triages and work in collaboration with resolved groups, third party or with designated customer contactsLiaise between cross functional teams and assist in formulating security incident response reportAdvocate protection and mitigation strategies to be implemented from lessons learnt exercisesStrong knowledge of Operating systems namely Windows, linux and MACStrong understanding of cyber security threatsKnowledge of recent cyber security trendsExperience in creating rules in SIEMUnderstanding of usage of AI in cyber security