March 21, 2018

SOC Administrator in SecurView Systems Pvt. Ltd Pune

SOC Administrator in SecurView Systems Pvt. Ltd Pune

Job Description

Looking for L2 SOC Admin Engineer, Reporting, troubleshooting issues occurred on daily health check and Creating change request tickets for SOC Admin activities, Issues and Incidents.

Good knowledge on:

SIEM(ArcSight ESM Console and Manager, Logger, Smart Connectors, ArcMC)
FIM (TripWire)

Having good knowledge on SIEM, FIM, IPS, Network devices and TCP/IP model, Ports and Incident analysis.
Good verbal/written communication skills.
Review of daily health Check: ArcSight ESM, Loggers, ArcMC, IPS, Tripwire and Checkpoint.
Data Archiving and backup and data purging as per need and compliance.
Evidence collection for audits and documentation of all activities performed and recorded.
Raising Change management tickets for SOC Admin activities and incidents at ticketing tool.
Helping L3 and assisting L1 with required knowledge base details and basic documentations.
Co-ordination with L1 and SOC Monitor team on troubleshooting issues and highlighting it to L3 for further resolution and escalation.
High ethics, ability to protect confidential information.
Also creation active channels, reports, lists, filters, modifying the rules (fair knowledge) and dashboard.
Building of incident reports, check if SLA has been met for Incident alerting and Incident closure.
Update and maintain SOC knowledge base for new security incidents and docs.
Creation of daily status report sheet and submit to SOC lead for review.
Review advisories and make necessary detection measures.
Provide analysis and trending of security log data from a large number of security devices.
Troubleshooting non-reporting devices and maintain device status.
Firewall rules review and check and sanitizing the rules wrongly configured.
Configuration of policies on IPS and Tripwire with reports notification dashboards and alerts.
Working with OEM (Tool support) in a way to resolve the issue or incident raised.
Deep knowledge of understanding of configuring Connectors, agents and Sensors for SIEM, FIM and IPS and trioubleshooting.
Working with third party tools is a plus.
Good knowledge on Linux commands
BE/B.Tech CS/CSE or Equivalent trade, CCNA, Admin Analyst Certification.
System Security Certification.
CEH will be a plus.

Designation: L2 Soc Admin
Experience Level : 1-3 Years.

Job Location : Pune
Salary: NA
Industry: IT-Software / Software Services
Functional Area: Other
Role: Other
Employment Type: Permanent Job, Full Time

Related Jobs: Big Data Architect job in Pune , Java Developer job in Pune

Desired Candidate Profile

Essential Skills:
Escalation point for L1 and Soc Monitor team.
Handsome experience in SIEM administration and Event flow architecture and different types of logs generated by devices like Windows, Proxy, Network Devices, Databaseetc.
Good Understanding of Firewall, IDP/IPS, SIEM functioning (Generalize HLD as well as LLD).
Deep understanding on Windows, DB, Mail cluster, VM and Linux commands.
Knowledge of network protocols TCP/IP and ports.
Team Spirit and working ideas heading to resolution of issues.
Good verbal/written communication skills.
Additional Desired Skills:

Excel, Formulation.
Documentation and presentation.
Quick response on issues and mail with prioritization.
Ready to work in 24x7 environments.

Recruiter Details

SecurView Systems  is a growing brand of Managed Security Services and Professional Security Services. SecurView offers, as an organization the ability to leverage existing security components and internal IT resources to deliver a comprehensive real-time monitoring, reporting and rapid response managed security solution. SecurView continues to serve number of clients in financial services, retail, banking, IT, automobile, manufacturing, and several other verticals.
SecurView offers an exciting opportunity for a qualified professional with the right combination of management leadership and hands-on experience to lead a team of software engineers in delivering world class Managed Security and Infrastructure Services. The managed services platform (MSP) is used by growing number of channel partners as well as customers. The vision of MSP is to deliver various services such as security event monitoring, vulnerability assessment, network scan, availability monitoring, performance monitoring, and incident and change management for enterprise customers

Contact Details

Recruiter Name: Tanvi Salpekar
Company Name: SecurView Systems,
Address: 101, Amar Apex, Baner, Pune, Landmark- opp. Bata Showroom