SOC Analyst Level 2
Bangalore/ Gurgaon, India
AXA XL has an exciting opportunity for specialist SOC Level 2 Incident Detection and Response analyst who will serve in the front line and support security incident investigations across the organisation’s global infrastructure and respond to escalations from the Level 1 Soc team. You will be required to leverage existing tooling to investigate and respond to both internal and external security threats.You will monitor security events in real-time, assess threats and provide accurate and timely response.You will work closely with security and technical teams, with diverse set of skills to tackle unique challenges we encounter.
DISCOVER your opportunity
What will your essential responsibilities include?
·Act as an escalation point for Level 1 analysts and contribute to the Level 1 capability.
·Deep dive analysis of escalated alerts to understand impact and prioritize tickets.
·Provide additional context on the threats.
·Forensics Investigations.
·Monitor and support Incident remediation.
·Root cause analysis.
·Produce high quality reports and accurate reports for a wide range of stakeholders.
·Provide technical guidance to Level 1 analysts on complex security issues.
·Mentor and support L1 analysts with alert analysis.
·Troubleshoot SIEM issues.
·Continuous reporting and improvements.
·Maintain and improve SOPs and Processes.
·Contribute to the enhancement of threat detection and response capabilities.
·Participate in incident response exercises and RED/BLUE/Purple team activities.
You will report to the SOC head.
SHARE your talent
We’re looking for someone who has these abilities and skills:
Required Skills and Abilities:
·Relevant years of proven experience working in a Security Operation Centre with a focus on incident detection, analysis, and response.
·Outstanding understanding of cyber security principles, threat intelligence and attack vectors.
·Working knowledge of Azure Sentinel, Microsoft Defender, ADX or other similar security tooling.
·Excellent Cloud Security and Cloud incident handling skills, knowledge, and experience
·Experience handling digital forensic evidence and writing reports to support investigations.
·Good understanding of attacker tactics, techniques, and procedures (TTP).
Desired Skills and Abilities:
·Ex