ARC Sight(Global SOC Tier1/Tier2 Analyst) Job For 4-8 Year Exp In Orion Systems Integrators Inc Hyderabad / Secunderabad – 1479258

Company: Orion India Systems

Client : MNC Clients

Monitoring security events from multiple sources, analyze the results and escalate, when necessary, to the appropriate group for remediation. The events will originate from, but are not limited to DLP, IDS, IPS, antivirus, firewalls and system security logs using ArcSight and Splunk SIEMs.
Identify and respond to cyber security incidents, including analysis of event data, to identify and validate security breaches. Involves communicating with member firms and making sound recommendations on mitigation and prevention techniques.
Identifies security exposures that currently exist, or are emerging, and that create potential threats to Deloitte’s infrastructure, systems or data. Proposes risk mitigating strategies to leadership. Advises on acceptable mitigating controls and ensure they are documented.
Good Knowledge of malware analysis, Phishing events, Spoofing events, DoS-DDoS events, SQL Injections events, Ransomware incidents
Monitors security blogs, articles, and reports and remains current on the ability to predict, detect, and respond to the latest security risks, threats, and technology trends.
Conduct detailed analysis of suspect systems using various forensic tools and techniques, which may include malware analysis
This position also requires working closely with Tier 3 teams for escalating and resolving any relevant security issues
Develop custom content for the SIEM platform. This would include creating, publishing, and communicating the availability of dashboards that will be monitored by the Security Operations Center.
The team
Deloitte Global SOC is operating 24×7 out of Hyderabad is acting as first line of defense for Deloitte and its clients.
Required:
• 3 – 6 years of in-depth experience working in SIEM as SPLUNK and ArcSight and hands on experience in SOC operation.
• Strong background in security incident response, system operations and threat intelligence
• Bachelor’s degree or equivalent experience;
• Minimum of 3 years of relevant experience
• Strong proficiency in written and spoken English
• Should have knowledge in incident response, vulnerability management, security intelligence, automation / scripting and the operation of advanced security tools.

• Strong interpersonal skills or prior professional services experience in 24×7 SOC operations is desired
Notice Period: 0 – 15 days
Preferred:
• CEH, Security+, Splunk, ArcSight, or other industry-relevant cyber-security certifications are a plus.
• The individual must have a strong awareness of current and developing security threats and technologies to support research and recommendations.
Other
• This role will be responsible for supporting 24×7 operations thus requires night / weekend shifts on a rotational basis to support the requirements of the organization
Location: Hyderabad only