T&T-Cyber-D&R-SOC-SIEM- Consultant-Mumbai

Minimum of 6-10 years experience manage large Security Operation Centers projectsResponsible for adherence of SLA for all tickets and deliverables in the projectAdvise and tracks remediation of issues found during an incident or vulnerability that is required to conclude a security investigationResponsible for the validation and analysis of investigations within Security Operations Center (SOC) done by L1/L2Good understanding of SOC concepts and log review from various sources such as IBM QRadar SIEM, Palo Alto and SOARResponsible for completing the documentation of the investigation; determine the validity and priority of the activity and Carry out Level 3 triage of incoming issues and escalate to L4 if neededCreation of SOPs and run book and maintain it.Provide communication and escalation support to L1/L2 throughout the incident per the SOC guidelines.Ensure that all security events and incidents (internal / external) are logged into ServiceNow and regularly updated and closed within the set SLAsStrong technical understanding of network fundamentals and common Internet protocols, specifically DNS, HTTP, HTTPS / TLS, and SMTPKnowledgeable in the fundamentals of firewall, IDS/IPS, EPP/EDR, FIM, WAF, VPN, and other security protective/detective controls.Knowledge of email security threats and security controls, including experience analyzing email headers Experience analyzing network traffic using tools such as Wireshark, to investigate either security issues or complex operational issuesFamiliarity with core concepts of security incident response, e.g., the typical phases of response, vulnerabilities vs threats vs actors, Indicators of Compromise (IoCs), etc.Must be able to map security incidents with MITRE ATT&CK framework or the cyber kill chainConsulting for creation of threat-based use cases will be an added advantageWould be playing the role of a shift lead for L1/L2 teamsMust be creating Bi-weekly/ Governance reports around the SOC operations for the Senior Management