Lead Security Operations Analyst

About Commvault 

Commvault (NASDAQ: CVLT) is the gold standard in cyber resilience. The company empowers customers to uncover, take action, and rapidly recover from cyberattacks – keeping data safe and businesses resilient. The company’s unique AI-powered platform combines best-in-class data protection, exceptional data security, advanced data intelligence, and lightning-fast recovery across any workload or cloud at the lowest TCO. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks, improve governance, and do more with data. 

JOB DESCRIPTION:

Lead Analyst

The Opportunity:

We have an outstanding career opportunity for a Lead Security Operations Analyst located in Bangalore, India. This individual will be part of the people, processes and technologies involved in providing situational awareness through the detection, containment, and remediation of Information Security threats. As a Lead Security Operations Analyst , you will be responsible for: Security Monitoring, Incident Response (IR), and Threat Hunting.

What you’ll do…

• Follow and maintain Incident Response procedures
• Lead technical efforts during a critical incident.
• Lead the coordination of response efforts across multiple security and operations teams during security incidents.
• Ensure Security Operations tools are effectively utilized and operating, identify gaps in process or procedure and implement new solutions accordingly.
• Drive gathering of forensics and evidence.
• Train and collaborate with fellow SOC members to ensure analysis procedures are updated and efficient.
• Stay abreast of industry trends and changing threat landscape and review technologies/services and make recommendations to continuously improve our capabilities.
• Develop and maintain effective relationships with IT and product teams throughout the company to coordinate efforts to protect critical systems and processes.
• Communicate vertically and horizontally to keep stakeholders informed and involved on Security Operations matters
• Contribute to the development of and manage information security monitoring tools, techniques, and control activities defined by the company’s Information Security program for both on prem and cloud-based infrastructure

Who you are?

• Minimum 10+ years’ experience in an information security discipline
• Minimum 5- 7 years’ experience in an incident response team
• Advanced experience in creating queries and alerts in a SIEM.
• Advanced experience in working with NDR/EDR solutions on enterprise level.
• Advanced knowledge of Indicators of Compromise (IoCs), Indicators of Attack (IoAs), ATT&CK Tools, Techniques and Procedures (TTPs)
• Experience with Windows/Linux/Mac OS forensics - filesystem, memory, and binary analysis.
• Experience with Cloud Security (Azure, AWS, GCP)
• Strong interpersonal skills, including good communication with the ability to articulate ideas in a precise and concise manner.
• Broad knowledge on the entirety of the security spectrum, with specialization in few areas such as: log analysis, malware analysis, memory analysis or forensics
• CISSP, GIAC certifications or equivalent (CEH, OSCP)

You’ll love working here because...

• Continuous professional development, product training, and career pathing
• Annual health check-ups, Car lease Program, and Tuition Reimbursement
• An inclusive company culture, an opportunity to join our Community Guilds
• Personal accident cover and Term life cover

Ready to #makeyourmark at Commvault? Apply now!

Commvault is an equal opportunity workplace and is an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status and we will not discriminate against on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work.

Commvault’s goal is to make interviewing inclusive and accessible to all candidates and employees. If you have a disability or special need that requires accommodation to participate in the interview process or apply for a position at Commvault, please email accommodations@commvault.com For any inquiries not related to an accommodation please reach out to wwrecruitingteam@commvault.com.

For our Candidates to prioritize your security: 

Commvault has been made aware of email and/or text correspondence scams that falsely state that the senders are from the Commvault HR team and/or a member of our leadership team. The scammers even conduct false interviews via email or text and then request personal information (name, address, birthdate, social security number, etc.) when returning the signed offer letter. Please note that Commvault does not conduct interviews by email or text, and we will never ask you to submit a W4 via email or prior to your first day of employment. 

If you think you have been targeted in this recruiting scam, please reach out to us at wwrecruitingteam@commvault.com. You can also find more tips about job scams and how to avoid them on the FTC’s website.