Security Operations Center Architect

About the RoleSOC LeadResponsibilities- Upgrade and maintenance of SIEM Device - Cyber incident and forensic investigation. - Logs analysis and co-relation of security events. - Self-motivated and quick learner and should be flexible in working 24*7 environmentRequired Skills- Must have hands on experience on DNIF, Arcsight, QRADAR SIEM, Qradar/qroc, sentinel. - Analysis of security events and containment for all security incident events to safeguard Customer infra. - Installation, configuration, and version upgrades for SIEM device. - Applying signature/IOC on security devices. - Providing RCA for the major incident occurred in customer environment. - Understanding of Incident response plan. - User case creating, fine tuning and log source onboarding. - Integration with ServiceNow, Tenable. - Good hands-on experience on threat hunting (Active and Passive). - Able to create customer parser for integration with SIEM solution. - Have good understanding of Unix/Linux platform.Preferred LocationChennai,Bangalore,Mumbai,Hyderabad

Apply Now