SOC Analyst

ROLE AND CONTEXT

NEED TO DO

NEED TO KNOW

Purpose: 

The job holder is responsible for acting as the front-line defense for the organization by identifying and mitigating threats, monitoring security events, and ensuring effective incident management within a 24/7 Security Operations Center (SOC) environment

Main Priorities: 

* Monitor and analyze cybersecurity events using RSA SIEM solutions. 

- Detect, triage, and escalate incidents when necessary. 

- Perform regular security assessments to identify vulnerabilities and mitigate risks. 

- Ensure timely response and analysis of phishing emails, general security tickets, and incidents. 

- Collaborate with third-party vendors to verify and enhance their security measures.

Key Outputs:

- Reports for IT administrators, business managers, and security leaders on security events and policy efficacy. 

- Documented incidents contributing to incident response and disaster recovery plans. 

- Root cause analysis and remediation plans for incidents. 

- Up-to-date security systems and contribution to security strategies.

Relationships:

1. Internal – ICD/West Operations
2. External – IDBI 

Reportees: NA

Key Performance Metrics: 

- Timeliness and effectiveness in detecting and mitigating threats. 

- Accuracy and completeness of incident reports. 

- Successful execution of SOC procedures and incident triage. 

- Collaboration effectiveness with internal teams and third-party vendors.   

- Maintenance of up-to-date security systems and contribution to security strategies.

Qualifications:

Education: B.E/B. Tech/B.Sc. degree

Skills/ Knowledge:

- Proficiency in operating systems, SIEM tools, and application security. 

- Knowledge of tools like Cortex XSOAR, Gurukul UEBA, Cyware TIP, PCAP, and NBAD. 

- Strong analytical mindset, interpersonal skills, and teamwork abilities.

Certifications (if any) : 

- CCSP / CEH / CISA / CISM / CISSP

Experience (add relevant Exp also)

Minimum 2–3 years in a Security Operations Center (SOC)