AssociateThreat Analyst - SIEM- India
India - Remote
Proficio
Proficio MDR expands the scope of a typical MSSP to provide organizations deeper cybersecurity threat detections to stay protected.Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a video tour of our global network of 24/7 Security Operations Centers (SOCs).
Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed Security Services Providers (MSSPs).
We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and security posture gap analysis.
Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively harness technology and build hardened processes that reduce the risk of security breaches.
While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.
Proficio’s commitment to developing and promoting our team members is unparalleled in our industry. Most of our senior managers were promoted from within.
Summary:
Available: Day and Night shift
The Threat Analysts are the core of our SOC-as-a-Service operations. They are on the front line receiving and triaging alerts from our SIEM platform. The operate across multiple customers and time zones while utilizing multiple consoles and technologies. Our Threat Analysts have strong network and security knowledge, are strong problem solvers, and work under time pressure to quickly analyze and report security threats in our customers’ networks.
Professionals at the Associate Threat Analyst level possess 0-3+ years’ experience and have mastered the core skill of threat monitoring
Core Skills:
- Threat Monitoring – actively monitoring our SIEM for alerts, then identify the root cause of the alert and provide suggested fixes
- Threat Analysis: Utilize knowledge of internal and external information vulnerabilities and match those to real-world cyber attacks
Advanced Skills:
- Incident Response: address and manage the aftermath of a security breach or cyber attack with a focus on limiting damage, reducing recovery time/costs, and returning systems to normal.
- Threat Intelligence: creation of the information our organization uses to understand the threats that have, will, or are currently targeting our customers. This information is then used to prepare, prevent, and identify cyber threats.
- DevOps: integrating security practices to bridge traditional gaps between IT and security while ensuring fast, safe delivery of services
Requirements
- Education and/or experience equivalent to 0-3+ years’ in both networking monitoring and cybersecurity
- Work with SIEM technologies receiving and triaging alerts from various log sources preferred
- Continuous learner who has a passion for defensive cybersecurity; ability to utilize resources at your disposal in an efficient manner; advanced problem-solving skills when encountering emerging security attack scenarios
- Strong base in Linux operating systems, scripting skills (preferably in Python), and experience with a variety of other security tools such as firewalls, IDS/IPS, and vulnerability management are all pluses
- Demonstrated communication skills including written documentation of troubleshooting and required responses
- Proven ability to work in a fast-paced environment with strict SLAs for response time
Benefits
- Opportunity to work in a progressive organization with structured training and roadmap for success
- Lunches and fun employee activities!
- Experience in one of the hottest IT industries today
Proficio is an EOE employer.
* Salary range is an estimate based on our salary survey 💰
Tags: DevOps Firewalls IDS Incident response IPS Linux Monitoring Python Scripting SIEM SLAs SOC Threat intelligence Vulnerabilities Vulnerability management
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Electronic Warfare Advanced Tactical Trainer jobs
- Open Security Operations Analyst jobs
- Open Senior SOC Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Analyste CERT / Incident Responder senior (H/F) jobs
- Open SOC Analyst jobs
- Open Staff Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Manager Pentest H/F jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Analyste CERT / Incident Responder junior (H/F) jobs
- Open IT Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open IT Security Specialist jobs
- Open Infosec Risk Manager jobs
- Open Cyber Program Manager jobs
- Open o365 Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Staff Information Security Engineer jobs
- Open Cyber Hunt SME jobs
- Open Information System Security Officer (ISSO) jobs
- Open Senior Security Operations Engineer jobs
- Open Agile-related jobs
- Open SIEM-related jobs
- Open GCP-related jobs
- Open Clearance-related jobs
- Open Risk assessment-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Analytics-related jobs
- Open Java-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open Kubernetes-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs
- Open Cryptography-related jobs
- Open CISA-related jobs
- Open Encryption-related jobs