This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured.
You will,
Support the following systems and functions:
- Security event management on 24*7 shift
- Monitor incoming event queues for potential security incidents
- Security incident management, 1st level triaging, escalations and RCA
- Perform initial investigation and triage of potential incidents; and escalate or close events as applicable
- Monitor SOC ticket (or email) queue for potential event reporting from outside entities and individual users
- Support parsers and rules development for the SIEM
- Escalate incidents to respective team for resolution (within SLA)
- Identity Access Management
- Create and track the access to customer environments
- Process improvements
- Identify improvements in processes and KPIs
- Adapt to improvement initiatives
- Shift handover
- Maintain SOC shift logs with relevant activity from the shift
- Document investigation results, ensuring relevant details are passed to Security Engineer for final event analysis
- Update SOC collaboration tool as necessary
- Vulnerability scanning and reporting
- Schedule the vulnerability assessment scan for desired frequency based on agreed plan for nodes in scope
- Track and provide details of the scan planned/ ongoing/ completed status as and when required
- Governance Reports
- Preparation of daily, weekly and monthly reports
To be successful in this role, you must have
- Basic knowledge of a Security Information and Event Management System (SIEM), such as McAfee, Splunk, Qradar, etc.
- Basic knowledge of a vulnerability scanning system such as Nessus, Tripwire, etc.
- Knowledge of both Linux-based and MS Windows-based systems with technical
- understanding and aptitude for analytical problem-solving
- Knowledge of IP networking
- Ability to work in shifts
- The ability to work constructively under pressure
- Ability to work both in a team as well as individually
- Knowledge sharing & collaboration skills
- Customer oriented, service minded
- Deliver results & meet customer expectations
- Excellent communication skills, English is a must
Key Qualifications
Education:
- Graduate in Computer Science or similar
- Minimum years of relevant experience:
- 0 to 3 years with at least 1 year of experience in IT security
- ITIL certification, CEH, Security +, CCNA Security or similar will be an advantage
- Basic knowledge of telecommunications networks will be an added advantage
Location: Bengaluru
Company: Ericsson
The Job is closed. Check the latest active jobs here.