Title: SOC Analyst
Duration: 6-month contract + opportunity for extensions/conversions
Location: Bangalore, India (3 days/week onsite)
Pay: $20 - 23 LPA
Day to Day:
Insight Global is looking for a Security Operations Analyst to join one of our major retail apparel clients. You will be joining the SOC team to support their 24x7 operations out of their India Tech Hub in Bengaluru. This would be a long term contract role with potential for full time conversion, sitting 3 days/week onsite in their Bengaluru office. The working hours would be 9AM - 5PM IST. This person will help the team to perform Security Operations Center (SOC) duties, which include incident response, malware analysis, and monitoring. This role will work with the team to implement processes and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access.
- Conduct threat analysis, assessment, and malware triage in support of security investigations
- Provide first/second level security support, monitor alerts, handle incidents and service requests
- Coordinate remediation and restoration efforts
- Record identified vulnerabilities, create remediation tickets and track their status
- Recognize and research attacker tools, tactics, and procedures (TTP) in indicators of compromise (IOCs) that can be applied to current and future investigations
- Build internal scripts, tools, and automation processes to enhance detection and response capabilities
Must-Haves:
- Bachelors in: Computer Science, Information Security, Cybersecurity, or a related degree.
- 2-4 years of experience in one or more areas: Security Operations, Incident Response, Information Security Technology, etc.
- Strong security concepts of threat categories (such as malware, phishing attacks, Defense-inDepth, MITRE ATT&CK framework, etc.)
- Working experiences to security tools such as SIEM, EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc.
- Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
- Good knowledge of networking protocols (SMTP, HTTP, HTTPS, FTP, DNS, DHCP, etc).
- Experiences of any query language and scripting language
- SharePoint, Excel, JIRA and/or Microsoft Office skills
- Experience in using security orchestration, automation, and response tools
- Experience with query languages and scripting languages
- Strong knowledge of M365 Security tools, Azure, AWS, GCloud
- Experience in using security orchestration, automation, and response tools
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
