Threat Analyst - SIEM (2)

Posted 3 Days Ago
India
Junior
Cloud • Security • Cybersecurity
The Role
As a Threat Analyst at Proficio, you will monitor and analyze security threats using SIEM technology, triaging alerts and collaborating across multiple time zones. You will utilize your networking and security knowledge to identify root causes and suggest fixes to enhance customer security.
Summary Generated by Built In

Description

Proficio is an award-winning (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Take a of our global network of 24/7 Security Operations Centers (SOCs).

Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last five consecutive years. MSSP Alert ranks Proficio among the top 250 global Managed Security Services Providers (MSSPs).

We have a track record of innovation. Proficio invented the concept of . We were the first MSSP to provide automated response services and are the only company in our space with a patent for cyber risk scoring and security posture gap analysis.

Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood. Our prospective clients are also challenged to effectively harness technology and build hardened processes that reduce the risk of security breaches.

While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.

Proficio’s commitment to developing and promoting our team members is unparalleled in our industry. Most of our senior managers were promoted from within.

Summary:

Available: Day and Night shift

The Threat Analysts are the core of our SOC-as-a-Service operations. They are on the front line receiving and triaging alerts from our SIEM platform. The operate across multiple customers and time zones while utilizing multiple consoles and technologies. Our Threat Analysts have strong network and security knowledge, are strong problem solvers, and work under time pressure to quickly analyze and report security threats in our customers’ networks.

Professionals at the Threat Analyst: professionals at this level possess 2-4+ years’ experience and have mastered both the core skills (threat monitoring and threat analysis)

Core Skills:

  • Threat Monitoring – actively monitoring our SIEM for alerts, then identify the root cause of the alert and provide suggested fixes
  • Threat Analysis: Utilize knowledge of internal and external information vulnerabilities and match those to real-world cyber attacks

Advanced Skills:

  • Incident Response: address and manage the aftermath of a security breach or cyber attack with a focus on limiting damage, reducing recovery time/costs, and returning systems to normal.
  • Threat Intelligence: creation of the information our organization uses to understand the threats that have, will, or are currently targeting our customers. This information is then used to prepare, prevent, and identify cyber threats.
  • DevOps: integrating security practices to bridge traditional gaps between IT and security while ensuring fast, safe delivery of services
Requirements
  • Education and/or experience equivalent to 2-4+ years’ in both networking monitoring and cybersecurity
  • Work with SIEM technologies receiving and triaging alerts from various log sources preferred
  • Continuous learner who has a passion for defensive cybersecurity; ability to utilize resources at your disposal in an efficient manner; advanced problem-solving skills when encountering emerging security attack scenarios
  • Strong base in Linux operating systems, scripting skills (preferably in Python), and experience with a variety of other security tools such as firewalls, IDS/IPS, and vulnerability management are all pluses
  • Demonstrated communication skills including written documentation of troubleshooting and required responses
  • Proven ability to work in a fast-paced environment with strict SLAs for response time
Benefits
  • Salary 9 Lakh
  • Opportunity to work in a progressive organization with structured training and roadmap for success
  • Health benefits, lunches, gym reimbursement, and internet funding for our India staff!
  • Experience in one of the hottest IT industries today

Proficio is an EOE employer.

Proficio collects certain personal information upon your submission of an application for an open position. More information is available about your consumer rights and our privacy policy at 

Top Skills

SIEM
The Company
HQ: Carlsbad, CA
190 Employees
On-site Workplace
Year Founded: 2010

What We Do

Proficio is a world-class Managed Security Service Provider (MSSP) providing managed detection and response solutions, 24×7 security monitoring and advanced data breach prevention services to organizations globally.

Our rapid growth is being fueled by the rise in cloud-based services, the acceptance of the Software-as-a-Service (SaaS) model, and the increasing number of cyber security attacks on businesses, hospitals and government. We have developed proprietary security content and threat intelligence tools to identify and proactively defend against advanced attacks and insider threats. Proficio’s founders are veterans of the security and networking industry who have helped guide multiple companies to successful exits.

Proficio’s customers benefit from the most advanced security monitoring and 24×7 managed security services that until recently were outside the budget of all but the very largest enterprises. Proficio’s ProSOC service offerings include the following:
• 24×7 security event monitoring, alerting, and remediation
• Advanced SIEM correlation analysis
• Protection against complex attacks and insider threats
• Actionable intelligence that enables internal IT teams to effectively and quickly resolve issues
• Threat Intelligence
• Active Defense that blocks targeted attacks in real time 24×7
• Worry-free compliance audits for: PCI, HIPAA, SOX, GLBA, FFIEC, NERC CIP, and FISMA regulations
• Visibility to event logs with easy-to-use web portal, powerful reporting, dashboards, and drill-down analytics
• Full management of security devices including patching, health and performance monitoring, and tuning
• Free 12 month log retention
• Out-of-the-box support for 400+ log sources
• Scalable cloud-based deployment – fast implementation and no software or hardware purchases
• Advanced scanning eliminating vulnerabilities before they can be exploited

Similar Jobs

Capital One Logo Capital One

Principal Associate- Machine Learning Engineer

Fintech • Machine Learning • Payments • Software • Financial Services
Hybrid
Bengaluru, Karnataka, IND
55000 Employees
Hybrid
Bengaluru, Karnataka, IND
289097 Employees
Hybrid
Bengaluru, Karnataka, IND
289097 Employees

Mondelēz International Logo Mondelēz International

Data Scientist 1

Big Data • Food • Hardware • Machine Learning • Retail • Automation • Manufacturing
Hybrid
Mumbai, Maharashtra, IND
90000 Employees

Similar Companies Hiring

Acquia Thumbnail
Software • Productivity • Marketing Tech • Cloud • Automation • Analytics • AdTech
Boston, MA
1100 Employees
LogicMonitor Thumbnail
Software • Machine Learning • Information Technology • Cloud • Artificial Intelligence
Santa Barbara, CA
1100 Employees
SailPoint Thumbnail
Software • Security • Sales • Data Privacy • Cybersecurity • Cloud • Artificial Intelligence
Austin, TX
2461 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account