Cyber Security Operations Analyst II
IND - KA - Bengaluru - Outer Ring Road
SVB
Silicon Valley Bank is the financial partner of the innovation economy; helping individuals and investors in the innovation ecosystem achieve extraordinary outcomes.When you work with the world's most innovative companies, you know you're making a difference.
Our clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.
They come to SVB for our expertise, deep network and nearly forty years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising SVBers, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.
Join us at SVB and be part of bringing our clients' world-changing ideas to life. At SVB, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities SVB serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.
Job Description:
Cyber Security Operations Analyst -II
About the role-
Looking for an experienced security event telemetry triage analyst . This is a technical role supporting the Monitoring function with threat analysis, content creation, tooling support, alert tuning, . Seeking a candidate who has worked in a Security Operations Center with strong understanding of network, host, and application security telemetry as well as controls related to perimeter defense, messaging, and proxy stacks.
Once here you will-
- Support the technical analysis of SIEM and alerts as requested by the triage team.
- Support the content creation pipeline for new threats identified because of an incident, threat intelligence or vulnerability.
- Identify any technology gaps and contribute to designing solutions to address them.
- Support the automation effort to streamline and accelerate triage response.
- Drive projects initiates and control enhancements.
- Promote core values, cross-skilling.
Core Duties -
- Event Triage and Analysis –investigate SIEM (Splunk) & SOAR (preferred Demisto/Cortex XSOAR) events as necessary; bring experience in malware analysis, network/endpoint security to respond and contain incidents.
- Content Development (Playbooks) - Support the creation countermeasures and mitigations in response to an incident or threat actor technique.
- Threat Hunting - Support the operational driven inputs (e.g., on the heels of an incident or event) into threat hunting and help build countermeasures/mitigations to detect commodity and targeted threats.
- Automation - Identify areas for automation and facilitate the creation of automation use cases and support their implementation.
- Deep Analysis – perform deep alert analysis using Splunk; should be able to write / understand Splunk queries.
Continuous Improvement
- Support playbook development and updates, alert tuning, process document creation, and collaboration across Cyber Operations and Information Technology to advance the Threat Monitoring program and capabilities.
What you will bring-
- Familiarity with event triage and analysis methods, building containment and mitigation strategies and executing them at speed is a must.
- Understanding malware attack paths, its associated artefacts on disk and memory and its use of legitimate applications to hide behaviors will be useful.
- Familiarity with malware behaviors or hands on malware analysis would be a plus.
- Familiarity with exploit writing and therefore understanding application behaviors would be useful.
- Ability to define security requirements and drive project deliverables.
Education and Experience
- Bachelor’s degree or equivalent education. Experience 4- 7 year in Security Industry.
.
© 2023 SVB Financial Group. All rights reserved. SVB, SVB FINANCIAL GROUP, SILICON VALLEY BANK, MAKE NEXT HAPPEN NOW and the chevron device are trademarks of SVB Financial Group, used under license. Silicon Valley Bank is a member of the FDIC and the Federal Reserve System. Silicon Valley Bank is the California bank subsidiary of SVB Financial Group.
Equal Employment Opportunity
Silicon Valley Bank is an equal opportunity employer and is dedicated to expanding its commitments and investments to create a more diverse, equitable and inclusive company culture and innovation ecosystem. We are strongly committed to the values and policy of equal employment opportunity across our employment practices.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation Content creation Endpoint security Exploit Malware Monitoring SIEM SOAR SOC Splunk Threat intelligence XSOAR
Perks/benefits: Career development Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs