Senior SOC Analyst

Egon Zehnder (www.egonzehnder.com) is the world's preeminent leadership advisory firm, inspiring leaders to navigate complex questions with human answers. We have more than 560 consultants who bring together vast industry experience and diverse insight, operating globally through 63 offices in 36 countries spanning across Europe, the Americas, Asia Pacific, the Middle East and Africa. We believe that together we can transform people, organizations, and the world through leadership. Our clients range from the largest corporations to emerging growth companies, government and regulatory bodies, and major educational and cultural institutions. We collaborate as One Firm across industries and geographies, leveraging strengths of every colleague and operate as a private partnership independent of any outside interests.

Knowledge Centre India (KCI)

Knowledge Center India (KCI), is the central engine that drives the operational value for the firm. Established in 2004, KCI has evolved over the years from purely operational efficiencies into more value added service offerings, becoming a true business partner. There are various teams based at KCI that work with Global Offices, Practice Groups and the Management across all aspects of the firm's business life cycle. With a headcount of more than 500, the center has 5 core teams working including Experts, Research Operations, Visual Solutions, Projects/CV Capture and Digital IT, working round the clock on many missions critical elements.

Who We Are!

We are part of Digital-IT team established 15 years ago in Gurgaon, India to provide technology support and rollout digital initiatives to 60 plus global offices. Digital IT has six key pillars Collaboration Technology; Functional Technology; Digital Technology; Security & Architecture; Infrastructure & Services, Digital Success to support business and to take lead on digital transformation initiatives with the total strength of 150+ team members across the globe.

The Position

Be a part of the Security Operations Centre (SOC) as a SOC analyst identifying, analyzing, notifying, and responding to security threats across a complex and disperse IT estate.

Conduct complex compromise analysis and work with resolver groups to ensure the timely mitigation of security events. Perform forensic investigations. Identify and assess threat intelligence sources recommending relevant requisite actions, gaining agreement, and facilitating implementation. Conduct security assessments including penetration testing and vulnerability assessments.

It is required that you stay up to date on IT security and on the latest methods attackers are using to infiltrate computer systems. Analysts need to research new security technology to decide what will most effectively protect their organization. The responsibilities are continually expanding as the number of cyberattacks increases.

• Experience: 5+ Years
• Able to work shifts on a rotating basis for 24/7 operational support

Responsibilities

1. Provides Monitoring and Analysis support of Cybersecurity events

• Identify and detect security threats
• Perform initial triage
• Report security events, in accordance with established processes and procedures
• Perform threat analysis, risk analysis, security assessments, and vulnerability testing
• Anticipate threats and alerts to avoid their occurrence
• Understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity, etc.

2. Investigate, analyze, and contain malware incidents Includes performing computer forensic

investigations

3. Understanding of common malware types and behaviors and common infection vectors Ability

to identify attacker Tactics, Techniques, and procedures (TTPs) Experience with IoC lifecycle

(development, organization, sharing, effective usage)

4. Will be responsible for: Developing alerting, reporting, and automated detection solutions

Authoring rules and creating new ML features

5. Strong experience in leveraging Next gen SIEM with SOAR/XDR capabilities to detect &

investigate the cyber security incident and reporting in defined template.

6. SIEM solution management and maintenance:

• Ensure health of underlying architecture
• Create ruleset and alerts to cover the current threat landscape
• Remediate alerts generated by the system
• Manage vendor relationship with OEM

7. Security Log Analysis Monitor and analyze the logs from various security tools e.g. SIEM,

EDR, DLP, AV etc. and manually correlate system analyzed events

8. Practical/Working experience with tools like EDR, DLP, Zero Trust, Threat intel software,

IPS/IDS, Email Security tools

9. Collaborate with various IT groups to collaborate for analysis, troubleshooting, and ensure

that their requirements and new initiatives adhere to information security policies and best

practices.

10. Responding to escalations to resolve detection effectiveness issues (misclassified spam/phish

and false positives) Design and develop novel threat detection techniques or methodologies

from creating proof-of-concept to productizing the solution.

11. Perform device reviews to ensure compliance with hardening standards, access controls and

security related configuration settings

12. Prepare and update security documentation including security procedures, standards,

notifications, and alerts in support of other teams within the EgonZehnder Security

department.

13. Proactively hunting threats, blue teaming, performing exploit and vulnerability research, all in

order to find and a gap that can be exploited by bad actors

Skills:

1. Prior work experience in SOC
2. Should be able to conduct advanced forensics including packet captures using tools such as Wireshark, Netmon etc.
3. Knowledge and experience of configuration and operation of SIEM Solutions
4. Expert knowledge of configuration and operation of Security Solutions including, Firewalls, IDS, Internet Filters, DLP, Vulnerability Scanners, Anti Malware Solutions, etc.
5. A basic understanding of Linux and Windows operating systems and OS event logging
6. Strong analytical and problem-solving skills
7. Excellent communication skills both verbal and written
8. Experience in evaluating and implementing new tools, and solutions by working directly with the vendor

Relevant Professional Qualifications (Preferred)

1. Certified Ethical Hacker (CEH)
2. Global Information Assurance Certifications (GIAC) e.g. Certified Incident Handler (GCIH), Certified Intrusion Analyst (GCIA), Certified Enterprise Defender (GCED)

Benefits which make us unique

At EZ, we know that great people are what makes a great firm. We value our people and offer employees a comprehensive benefits package. Learn more about what working at Egon Zehnder can mean for you!

Benefits Highlights:

5 Days working in a Fast-paced work environment

Work directly with the senior management team

Reward and Recognition

Employee friendly policies

Personal development and training

Health Benefits, Accident Insurance

Potential Growth for you!

We will nurture your talent in an inclusive culture that values diversity. You will be doing regular catchups with your Manager who will act as your career coach and guide you in your career goals and aspirations.

Location

The position is based at Egon Zehnder's KCI office in Gurgaon, Plot no. 29, Institutional Area Sector 32.

EZIRS Commitment to Diversity & Inclusion

Egon Zehnder Information Research & Services (EZIRS) aims for a diverse workplace and strive to continuously lead with our firm values. We respect personal values of every individual irrespective of race, national or social origin, gender, religion, political or other opinion, disability, age and sexual orientation as warranted by basic rights enshrined in the UN Declaration of Human Rights. We believe diversity of our firm is central to the success and enables us to deliver better solutions for our clients. We are committed to creating an inclusive environment and supportive work environment, where everyone feels comfortable to be themselves and treated with dignity and respect and there is no unlawful discrimination related to employment, recruitment, training, promotion or remuneration.

Egon Zehnder is an Equal Opportunity Employer

Egon Zehnder provides equal employment opportunities to all applicants and employees without regard to race, color, creed, religion, sex, sexual orientation, gender identity, marital status, citizenship status, age, national origin, disability, or any other legally protected status and to affirmatively seek to advance the principles of equal employment opportunity.