SOC L1

Security Operations Center (SOC) L1

Role Summary:
We are seeking a highly skilled and proactive Senior Security Analyst to join our Security Operations Center (SOC) team. The ideal candidate will play a critical role in monitoring security alerts, investigating threats, managing SIEM operations, and ensuring timely incident resolution—while maintaining log integrity and system health.

Key Responsibilities:

• Continuously monitor security alerts, incidents, and health dashboards.
• Investigate security alerts and coordinate with relevant teams to ensure closure.
• Analyze and report IPs with poor reputation; escalate to the network team for blocking.
• Develop and customize reports, rules, and dashboards per client requirements.
• Create and fine-tune incident alert rules within the SIEM platform.
• Integrate various security devices and log sources into the SIEM (e.g., firewalls, routers, servers).
• Perform fine-tuning of alerts to reduce false positives and improve detection accuracy.
• Monitor and manage SIEM storage components such as Archiver.
• Maintain connectivity checks for RSA NetWitness components (Log Decoder, Concentrator, ESA, etc.).
• Backup logs from cold storage to virtual machines (VMs) in line with the retention policy.
• Ensure integrity, availability, and confidentiality of all event and log data.
• Provide end-to-end resolution of HPSM (HP Service Manager) tickets.
• Participate in compliance assessments and audit readiness activities.

Required Skills:

• Strong hands-on experience with RSA NetWitness SIEM or similar platforms.
• In-depth knowledge of security monitoring, alert handling, and incident response.
• Proficiency in log analysis and development of security use cases.
• Experience in integrating new log sources and performing log correlation.
• Solid understanding of network security, IP reputation, and threat vectors.
• Familiarity with HPSM or other ITSM tools for ticket lifecycle management.

Job Type: Full-time

Pay: Up to ₹900,000.00 per year

Benefits:

• Paid time off

Shift:

• Rotational shift

Application Question(s):

• What is you Total Experience in SOC L1/L2 role?
• What is your relevant experience with SOC L1/L2 role?
• What is your current location?
• Are you available for a face-to-face interview in Ghaziabad?
• What is your current CTC?
• What is your official notice period?
• Do you have experience in RSA Netwitness? (MUST HAVE REQUIREMENT)

Work Location: In person