SOC Analyst L2
Hyderabad, Telangana, India
Coretek Services
Managed cloud services and future-ready cloud solutions for businesses worldwide.Join a highly skilled and motivated team of Cyber Security Professionals tasked with protecting Coretek and its customers. The Cyber Security Analyst role is primarily focused on responding to alerts, detection of IOCs (Indicators of Compromise), incident response, alert/SIEM tuning, threat hunting, and triage. Leverage Microsoft Sentinel as well as, cyber case management and supplementary tools to investigate, contain, and remediate cyber security incidents. The Cyber Security Analyst must have a drive to learn and grow as the industry changes and Coretek adapts rapidly.
- Respond to alerts and validate
- Lead or support Incident Response investigations for Coretek and Coretek customers
- Coordinate efforts with 3rd party SOC teams for joint operations
- Perform analysis of logs and alerts to differentiate security incidents from security events
- Discover and correlate relationships between unrelated event information as part of an investigation
- Obtain corroborating evidence through packet analysis of network traffic
- Coordinate with appropriate teams to provide incident handling and response support
- Continuously improve incident response procedures & runbooks
- Handle security incident escalation via Cyber Case Management tools, SIEM, ITSM, email, phone, or walk-up
- Manage security incidents to completion and work with internal teams for remediation or escalation assistance
- Gathering forensic evidence
- Analyzing events based on digital artifacts
- Determining mitigation/remediation/security improvement opportunities
- Working with stakeholders to communicate findings
Requirements
- Experience in incident response, investigation, system forensics, or related cyber security education
- Formal education or certifications in incident response, forensics, cyber security case management, IT technology, networking, or related topics
- Experience reviewing and analyzing log data from various network and security devices
- Experience with well-known information security related tools for packet capture, network/OS fingerprinting, and communication
- Familiarity with Windows and Linux operating systems including command line operation
- Possess a strong foundation in networking fundamentals with deeper knowledge of TCP/IP and other core protocols
- Knowledge of common network-based services and common client/server applications
- Excellent verbal/written communication, interpersonal and organizational skills
- Communicate effectively with varied levels of staff to develop positive working relationships
- Ability to continuously improve skillset to combat changing threat landscape
- Excellent problem-solving skills to diagnose technical issues
- Manage customer situations professionally to aid in positive customer satisfaction
- Ability to learn innovative technology and concepts quickly
- Ability to work on a shift or on-call rotation if needed
- Experience working on a security operations team
- Practical understanding of exploits, vulnerabilities, computer network intrusions, adversary tactics, exfiltration techniques and common knowledge
- Experience with enterprise SIEM products
- Experience with ITSM, SOAR, or Cyber Case Management Tools
- Scripting with Python, Perl, Bash and/or PowerShell a plus
- Database structures and queries, Regular Expressions a plus
- Experience acquiring and analyzing data from clients and servers related to security incident response
- Digital Forensic or Threat Intelligence work
PREFERRED QUALIFICATIONS:
- Experience working on a security operations team
- Practical understanding of exploits, vulnerabilities, computer network intrusions, adversary tactics, exfiltration techniques and common knowledge
- Experience with enterprise SIEM products
- Experience with ITSM, SOAR, or Cyber Case Management Tools
- Scripting with Python, Perl, Bash and/or PowerShell a plus
- Database structures and queries, Regular Expressions a plus
- Experience acquiring and analyzing data from clients and servers related to security incident response
- Digital Forensic or Threat Intelligence work
EDUCATION and TRAINING:
- Degree in technology, cyber security, criminal justice, or equivalent work experience
- Security related certifications desired
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Bash Exploits Forensics Incident response Linux Perl PowerShell Python Scripting SIEM SOAR SOC TCP/IP Threat intelligence Vulnerabilities Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs