Associate - SOC Analysis (L2) - Elastic Endgame

**Job Description: 5+ Years** - Act as a bridge between SOC team and Customer’s Team - The scope of services rendered by the onsite cybersecurity resource will cover both IT and OT - The onsite cybersecurity resource will be responsible to investigate threats (as detected by SOC) and respond to them in a timely fashion. - He/she will be responding for...

Lead and manage Security Operations Center - Responsible for team management, personnel scheduling, overall use of resources and initiation of corrective action where required for Security Operations Center. - Primarily responsible for security event monitoring, management and response - Ensure incident identification, assessment, quantification, reporting,...

**Roles and Responsibilities** - Triage and Investigate the assigned Incidents. - Create incident reports Include all the investigation steps, lessons learned and recommended actions. - Modify the use cases for false positive incidents. - Create and modify use cases, dashboards and reports. - Threat hunting. - Integrating with threat intelligence feeds. -...

**Description**: - Responsible for monitoring cyber security solutions in support of detection and analysis of potentially compromised systems, performing root cause analysis, and supporting remediation efforts. - Has a good technical knowledge of IT and OT cyber security and an interest in becoming an expert in OT security. - Possess hands-on experience...

**Role Overview**: The L1 SOC Consultants (Log Management) are responsible for monitoring and analyzing security event logs to identify potential security threats. This role involves working in a Security Operations Center (SOC) environment and triaging security alerts to ensure timely incident response and resolution. **Key Responsibilities**: - Analyze...

The Security Operation Centre (SOC)Operator is the first level of monitoring in the SOC. The position monitors and responds to security events from managed customer security systems as part of a team on a rotating 24 x 7 x 365 basis. Experience should include exposure to security technologies including firewalls, IPS/IDS,EDR,SIEM, logging, monitoring and...

Responsibilities:·       Conduct in-depth investigations of security incidents to determine root cause and impact.·       Perform advanced threat hunting to identify potential threats and vulnerabilities.·       Analyze security logs and network traffic to identify suspicious activities.·       Develop and implement...

Microsoft Sentinel, Sentinel Use Case Creation Monitoring, Azure Log Analytics, CCSP, Cyber Security SOC Operations - L2, Defender XDR, KQL, MITRE ATT&CK Framework, Microsoft AZ500, Microsoft SC200Desired Candidate Profile8+ yrs of total expL2/L3 SOC level of support4 + yrs of relevant exp in sentinel and defender

_**Role Overview**:_ The SOC Lead Detection and DFIR (Digital Forensics and Incident Response) is responsible for leading a team of cybersecurity analysts in detecting and responding to security incidents. This role involves overseeing the day-to-day operations of the Security Operations Center (SOC), managing incident response activities, and conducting...

A **SOC Lead** plays a critical role in ensuring the organization’s security operations run smoothly, driving improvements in detection, incident response, and overall security posture. The individual in this role is both a leader and a technical expert, balancing operational excellence with strategic oversight to protect the organization from cyber...