MSS Analyst

Roles and responsibilities-

• Mini. 2 years of experience implementation & operations.
• The resource should have implemented at least 4-5 projects in customer environment.
• Should be able to create HLD & LLD documents and should be able to draw architecture as per customer need
• Working Knowledge of SOC/ SIEM tools and operational understanding
• Must have lead team of Security Consultants/ Analysts
• Should have sound knowledge of products & should be able to carry out the POC’s, Implementation and Operations support.
• Should lead the delivery of multiple projects at customer locations.
• Should have knowledge of following products (with Operations and Implementation)
• DLP/ Proxy – Forcepoint, Symantec, Cisco, McAfee
• Email Security – Symantec, Forcepoint, Cisco
• NAC Solutions – Cisco ISE, Forcescout
• EDR/ XDR Solution – Trend Micro, Crowdstrike
• SOC SIEM Solution (Arcsight, Qradar, RSA or Seceon)

• Product certification from any of the above products will be added advantage
• Must be able to execute strategic and tactical direction for solutions offerings
• Experience in supporting a multiple customer base systems and network environments.
• Provides timely and adequate response to threats/alerts, including off-hour support.
• Develop functional specifications for integrating/ adopting requirements into enterprise target state architecture or specific application.
• Collaborate with business groups to help them to identify, classify, and secure high value data
• Provide feedback via periodic reports based on rule parameters; Ability to write regular expressions.
• Ability to self- direct and work independently when necessary, and clearly articulate technical concepts/ issues to both technical and non- technical peers and management.
• The ability to assess security events to drive to a resolution.
• Demonstrate Understand Critical Data Types such as PII, NPI, PCI, HIPAA, etc.
• Demonstrate Understanding of Mass Storage, USB, Removable Media, for example allow charge but do not allow data copy
• Excellent English communication skills mandatory.
• Excellent documentation skills mandatory.
• Understand reporting capabilities.

• Process and Procedure adherence
• General network knowledge and TCP/IP Troubleshooting
• Ability to trace down an endpoint on the network, based on ticket information
• Familiarity with system log information and what it means
• Understanding of common network services (web, mail, DNS, authentication)
• Knowledge of host based firewalls, Anti-Malware, HIDS
• General Desktop OS and Server OS knowledge
• TCP/IP, Internet Routing, UNIX / LINUX & Windows NT
• Good to have industry certifications on SIEM Platform, CCNA, CEH, MCSE & Others
• Bachelor’s Degree in Computer Science or equivalent required
• 5-10 years’ experience in IT security
• Good communication skills
• Strong level of customer service required