EXECUTIVE INFORMATION SECURITY - OPERATIONS

Job PurposeResponsible for monitoring and analyzing an organization’s security posture on an ongoing basis. The goal is to detect, analyze, and respond to cyber security incidents using a combination of technology solutions and a strong set of analytical skills. Job ResponsibilitiesTo be an active part of Security Operations Centre and SOC 24/7 monitoring.Monitoring of security logs, alerts through SIEM and other security tools for suspicious events & activities.Perform initial triage of alerts to identify false positives and potential security events.Escalation and co-ordination with stakeholders and cross function departments for SOC investigation and security incident case management.Document all alerts, investigations, and actions taken in the incident case management system. Follow predefined playbooks/workflows and SOPs for alert handling and incident escalation.Ensure proper categorization and prioritization of alerts based on severity and impact.Maintain real-time situational awareness of ongoing security events.Support continuous improvement by reporting recurring false positives or tuning needs.Stay updated with emerging threats, new attack patterns, and SOC tools usage.Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.Perform threat identification, threat modelling, identification of threat vector.Benchmark, analyze, report on, and make recommendations for the improvement and growth of the Next Generation infrastructure and systems in context of information security protection.Eligibility Criteria (Education, Knowledge, Experience and Skills): Education:Must have Bachelors Degree/ Equivalent, preferably Computer Science / Cyber SecurityWork ExperienceShould have preferably 2 years of relevant experience such as SOC Operations and Cyber Threat ManagementSkills - Generic:Team BuildingWritten / Verbal communication SkillsAbility to handle high pressure situations with key stakeholdersProblem solving and Interpersonal skillsSkills - Job Specific:Proficient in Incident ResponseIn-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors etc.Knowledge of threat management, Digital Forensic & Malware Analysis (Dynamic & Static).Knowledge of various operating system flavors including but not limited to Windows, Linux, UnixKnowledge of applications, databases, middleware to address security threats.Proficient in preparation of reports, dashboards and documentation.