Insight Global
SOC Analyst - INTL INDIA
Insight Global, Round Rock, Texas, us, 78682
Job Description
Shift: M-F 11:30am - 7:30pm EST
Respond to security incidents and threat analysis.
Remediate high severity security incidents
Lead & participate in threat hunting and threat intelligence activities
Conduct advanced technical investigations for critical incidents paying attention to specific analysis and fast remediation advice with a focus on improving the customer security posture
Conduct analysis of infected hosts or analyze network traffic to identify attacker activity
Handle specific forensic and malware analysis, as well as complex log analysis requests
Perform event correlation review through incoming data feeds, ticketing systems and security alert mechanisms
Provide context on complex security incidents from Customer and other available resources, collect and assemble data, as well as contribute to technical reports
Utilize in-depth technical knowledge to design procedures for the detection of threat actors behavior, as well as develop and implement standard technical procedures (runbooks) to be used by the Security Monitoring team for day-to-day operations
Perform Event Stream tuning utilizing internal tools, metrics and experience involving key security concepts for systems efficiency
Review security related events assess their risk and validity based on available network, endpoint, and global threat intelligence information
Research and make recommendations for applying MITRE ATT&CK and NIST framework aligned strategies to the Customers environment
Guide and mentor fresh Cyber Security L1 Analyst in triaging activities
Accept work escalated by L1 Analysts for further analysis and reporting
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Skills and Requirements
Microsoft Sentinel or Defender
3-5 years of experience in a SOC
Experience in Log Analysis
Understands and can explain the security architecture of an organization and why certain security devices are required/important Crowdstrike null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.
Shift: M-F 11:30am - 7:30pm EST
Respond to security incidents and threat analysis.
Remediate high severity security incidents
Lead & participate in threat hunting and threat intelligence activities
Conduct advanced technical investigations for critical incidents paying attention to specific analysis and fast remediation advice with a focus on improving the customer security posture
Conduct analysis of infected hosts or analyze network traffic to identify attacker activity
Handle specific forensic and malware analysis, as well as complex log analysis requests
Perform event correlation review through incoming data feeds, ticketing systems and security alert mechanisms
Provide context on complex security incidents from Customer and other available resources, collect and assemble data, as well as contribute to technical reports
Utilize in-depth technical knowledge to design procedures for the detection of threat actors behavior, as well as develop and implement standard technical procedures (runbooks) to be used by the Security Monitoring team for day-to-day operations
Perform Event Stream tuning utilizing internal tools, metrics and experience involving key security concepts for systems efficiency
Review security related events assess their risk and validity based on available network, endpoint, and global threat intelligence information
Research and make recommendations for applying MITRE ATT&CK and NIST framework aligned strategies to the Customers environment
Guide and mentor fresh Cyber Security L1 Analyst in triaging activities
Accept work escalated by L1 Analysts for further analysis and reporting
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Skills and Requirements
Microsoft Sentinel or Defender
3-5 years of experience in a SOC
Experience in Log Analysis
Understands and can explain the security architecture of an organization and why certain security devices are required/important Crowdstrike null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.