SOC Analyst - INTL - India
Seattle, Washington
Employer: Insight Global
Industry: Security Engineering
Salary: Competitive
Job type: Part-Time
Insight Global is looking for a Security Operations Analyst to join one of our major retail apparel clients. You will be joining the SOC team to support their 24x7 operations out of their India Tech Hub in Bengaluru. This would be a long term contract role with potential for full time conversion, sitting 3 days/week onsite in their Bengaluru office. The working hours would be 9AM - 5PM IST. This person will help the team to perform Security Operations Center (SOC) duties, which include incident response, malware analysis, and monitoring. This role will work with the team to implement processes and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access.
Conduct threat analysis, assessment, and malware triage in support of security investigations
Provide first/second level security support, monitor alerts, handle incidents and service requests
Coordinate remediation and restoration efforts
Record identified vulnerabilities, create remediation tickets and track their status
Recognize and research attacker tools, tactics, and procedures (TTP) in indicators of compromise (IOCs) that can be applied to current and future investigations
Build internal scripts, tools, and automation processes to enhance detection and response capabilities
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
Bachelors in: Computer Science, Information Security, Cybersecurity, or a related degree.
2-4 years of experience in one or more areas: Security Operations, Incident Response, Information Security Technology, etc.
Strong security concepts of threat categories (such as malware, phishing attacks, Defense-in Depth, MITRE ATT&CK framework, etc.)
Working experiences to security tools such as SIEM, EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc.
Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
Good knowledge of networking protocols (SMTP, HTTP, HTTPS, FTP, DNS, DHCP, etc).
Experiences of any query language and scripting language
SharePoint, Excel, JIRA and/or Microsoft Office skills
Experience in using security orchestration, automation, and response tools
Experience with query languages and scripting languages
Strong knowledge of M365 Security tools, Azure, AWS, GCloud
Experience in using security orchestration, automation, and response tools
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Conduct threat analysis, assessment, and malware triage in support of security investigations
Provide first/second level security support, monitor alerts, handle incidents and service requests
Coordinate remediation and restoration efforts
Record identified vulnerabilities, create remediation tickets and track their status
Recognize and research attacker tools, tactics, and procedures (TTP) in indicators of compromise (IOCs) that can be applied to current and future investigations
Build internal scripts, tools, and automation processes to enhance detection and response capabilities
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
Bachelors in: Computer Science, Information Security, Cybersecurity, or a related degree.
2-4 years of experience in one or more areas: Security Operations, Incident Response, Information Security Technology, etc.
Strong security concepts of threat categories (such as malware, phishing attacks, Defense-in Depth, MITRE ATT&CK framework, etc.)
Working experiences to security tools such as SIEM, EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc.
Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
Good knowledge of networking protocols (SMTP, HTTP, HTTPS, FTP, DNS, DHCP, etc).
Experiences of any query language and scripting language
SharePoint, Excel, JIRA and/or Microsoft Office skills
Experience in using security orchestration, automation, and response tools
Experience with query languages and scripting languages
Strong knowledge of M365 Security tools, Azure, AWS, GCloud
Experience in using security orchestration, automation, and response tools
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Created: 2024-09-28
Reference: 383178
Country: United States
State: Washington
City: Seattle
ZIP: 98109