GTPL Hathway - Security Operations Center Analyst - Network Platform

Job Summary

Hands On Experience

Networking Fundamentals

• A solid grasp of TCP/IP, DNS, HTTP, and other protocols is essential.
• Understanding how to interpret network traffic and packet structures is also important.
  

Network Security Principles

• Familiarity with firewalls, intrusion detection/prevention systems (IDS/IPS), and VPNs is crucial.
  

Log Analysis And SIEM

• SOC analysts need to be proficient in analyzing logs from various sources, understanding how to correlate events, and using SIEM (Security Information and Event Management) tools.
  

Endpoint Security

• Knowledge of endpoint security tools, including EDR (Endpoint Detection and Response) solutions, is vital.
  

Malware Analysis

• Basic understanding of malware behavior and analysis techniques is :
• Scripting knowledge (e.g., Python, PowerShell) can be beneficial for automating tasks and creating custom tools.
  

Key Responsibilities

• Monitor network security tools, SIEM platforms, and ISP-specific telemetry to detect anomalies and potential threats.
• Triage and respond to events such as DDoS attacks, malware outbreaks, phishing campaigns, and brute-force attempts.
• Investigate security alerts related to routers, switches, firewalls, DNS servers, and customer CPE devices.
• Assist in mitigation of large-scale, distributed threats impacting customer services or infrastructure availability.
• Escalate and coordinate with NOC and network compliances team as necessary.
• Maintain detailed logs and documentation of incidents, threat patterns, and follow-up actions.
• Stay up to date on emerging threats to ISP infrastructure and services.
• Support compliance and reporting efforts for internal policies and external regulations (if :
• Education : Bachelors/Masters degree in Cyber Security Certifications