'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Envestnet/Yodlee - Lead - Security Operations Centre
BangaloreIts a Scheduled Drive on the SSE role.
Lead SOC :
- Lead 6 to 8 years experienced professional having working experience in managing security devices like IDS,Firewalls, vulnerability scanners, SIEM, etc. Working experience of Linux, VMware, AWS, Openstack, etc.
- Should have script writing skills and should be adept at using them to automate complex tasks. Should have at least 2 to 3 years experience working in cloud technologies - AWS & Openstack. Should have good communication skills and should be open and keen to learn new technologies
- Conduct initial triage, declare events/incidents, create incident cases, gather evidence, track and update incident status
- Analyze various open source and paid threat intelligence and use them for threat hunting activities
- Identify and develop areas for automation.
Description :
Job Title : Lead - SOC
Exempt or Non-Exempt- : Department- : Yodlee Security Office
Reporting Structure :
Reports to Sr. Manager, Security Operations Centre
Summary of Position:
To work as Lead -SOC
Primary Responsibilities- :
Key responsibilities of the job :
1. Conduct initial triage, declare events/incidents, create incident cases, gather evidence, track and update incident status
2. Analyze various open source and paid threat intelligence and use them for threat hunting activities
3. Develop and track key performance indicators (KPIs) and metrics for operational success.
4. Identify and develop areas for automation.
Work Experience :
6 to 8 years experienced professional having working experience in managing security devices like IDS,Firewalls, vulnerability scanners, SIEM, etc. Working experience of Linux, VMware, AWS, Openstack, etc.
- Should have script writing skills and should be adept at using them to automate complex tasks. Should have at least 2 to 3 years- experience working in cloud technologies: AWS & Openstack. Should have good communication skills andshould be open and keen to learn new technologies.
Skills :
1. Excellent communication skills both verbal and written
2. Experience in Event Correlation and Analysis
3. Experience in vulnerability assessments, Penetration testing
4. Experience in handling events thrown by DAM tool.
5. Experience in patch management, configuration management
6. Should have sound knowledge of Splunk/QRadar/any SIEM solution, IOC discovery tools, intrusion detection systems etc.
7. Should have strong knowledge in few of the Virtualization (Microsoft Hyper V/Citrix Xendesktop/VM VDI) and Cloud Technologies like AWS, VMWare, OpenStack, Microsoft Azure etc.
8. Must have a strong knowledge of the Operating System (Windows andLinux), Domain, Active Directory and its concepts, interaction between Hardware, OS, Network, Storage and Application Software.
9. Should have deep understanding of open source technologies such as cloud open and open stack
10. Ability to analyze network traffic, large sets of log data, and other relevant security data to hunt for potential adversary activity
11. Establishing traffic and data flow baselines to identify anomalies; as well as developing hypotheses based on real-world cyber threat intelligence, defining data models to prove out hypotheses and conducting analysis on the associated data sets
12. Need to have experience in programming python to solve cyber security challenges.
13. Experience doing dynamic malware analysis
14. Perform deep packet analysis to identify attacks, vectors and security threats.
15. Good knowledge of OWASP Top 10.
16. Ability to create, modify, and implement both Snort and YARA signatures.
17. Prior experience in network forensics with an emphasis on detecting malicious activity using network traffic
18. Strong scripting and task automation skills
19. Provide knowledge to improve and mature the services and capabilities of the SOC.
20. Responsible for SOC communication and metrics report delivery to senior management
21. Identify unknown threats for our global clients through advanced threat hunting services to complement standard Security Operations Center services.
22. Experience in a security role with strong working knowledge and understanding of information security frameworks
Certifications :
SIEM Certified/Trained or, CCNA/CEH Certified, VM Tool certified/Trained, RHCE, Cloud technology certifications desirable
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}