Senior SOC tier 3

Required Technical Skill Set

Security Operations Center for monitoring, logging, managing, and responding to IT threats in core Banking environment.

The Senior security incident analyst & SIEM, SOAR engineer for managing security tool engineering support in a Security Operation Center (SOC) TCS Yahav SOC.

Key Skills required

• Investigate and resolve technical problems related to security incidents.
• Maintain effective communication channels within the SOC team. Provide technical and functional support to tier 1 SOC analysts.
• ArcSight SIEM – Engineering (configuring and managing monitoring tools), Log Management, Smart connector maintenance.
• Design and implement strategies to contain and recover from incidents.
• Act as a principal responder for managed security solutions.
• Palo Alto Cortex SOAR management
• Cortex SOAR Automation & Play book Management.
• Splunk E1 knowledge
• Python E1 knowledge
• Vulnerability management
• Knowledge of security policies for information systems
• Team Spirit

Desired Experience Range

At least 5 to 6 years

Must-Have

• 5+ years of SOC experience (3+ years of experience as Soc Analyst L2 & 2+ years of experience as Soc Analyst L3/ SOC Engineer)
• Familiar with CIERT, NIST, CIS, ISO27001frameworks, Critical Risks and Threat modeling,
• SIEM: Configuring and managing monitoring tools, Log Management, Vulnerability scanning technologies, Ticketing system
• Cortex SOAR management
• Automation of playbook
• Python E1 knowledge
• Splunk E1 knowledge
• Ability to successfully handle multiple priorities simultaneously is required.
• Good understanding and knowledge of security concepts, protocols, processes, architectures, and platforms
• Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
• Familiarity with security best practices and common emerging security threats
• Capable of meeting and exceeding Service Level Agreements (SLAs) as required per contract.
• Flexibility agility to support a 24-hour a day/365 days/year operation.
• Creation of reports, dashboards, metrics for SOC operations for management consumption
• Prepare and review documentation related to SOC operation, as required

Good-to-Have

• Familiarity with the Banking and Finance industry
• Excellent oral and written communications
• Experience in a ticketing and monitoring systems
• Technical expertise in endpoint security, network security, Identity protection, Application security
• Ability to create a defensive technique to security Threats
• Ability to effectively utilize resources throughout the organization as well as external vendors.
• Strong time management skills with the ability for multitasking

Background

Information Security Certifications OSCP, CEH, CISSP, CISM, CompTIA Security+ / BA / BS / Engineer

Others

• Self-motivated, well organized; demonstrates a positive attitude, high professionalism, and a commitment to project success.
• Ability to effectively utilize resources throughout the organization as well as external vendors.
• Up -to-date with latest industry trends in domain of application security

About Tata Consultancy Services

Tata Consultancy Services (TCS) is an IT services, consulting and business solutions organization that has been partnering with many of the world’s largest businesses in their transformation journeys for over 50 years. TCS offers a consulting-led, cognitive powered, integrated portfolio of business, technology and engineering services and solutions. This is delivered through its unique Location Independent Agile™ delivery model, recognized as a benchmark of excellence in software development.

A part of the Tata group, India's largest multinational business group, TCS has over 500,000 of the world’s best-trained consultants in 46 countries.