Overview
Security Operations Center Analyst Jobs in Colombo, Western Province, Sri Lanka at Hexaware Technologies
Title: Security Operations Center Analyst
Company: Hexaware Technologies
Location: Colombo, Western Province, Sri Lanka
Responsibilities
Monitor and investigate alerts in a 24×7 SOC operations environment.
Work on alerts/incidents escalated by junior analysts.
Investigate alerts includes log analysis, identifying the root cause, and gathering evidence.
Collaborate with senior analysts to investigate true positive alerts.
Reporting is a crucial aspect of the job, including weekly, MIS, compliance, and firewall policy changes reports.
Conduct peer reviews of alerts closed by team members.
Keep up to date with new cyber-attacks/advisories in various sites/blogs and search the IOC in the SIEM tool.
Assist senior analysts in fine-tuning rules and creating new reports/dashboards.
Escalate complex alerts/incidents to the senior analyst.
Send daily SOC status reports to the SOC manager & Cyber Security Director.
Work with the concerned team to understand why log sources are not forwarding logs to SIEM and share it with the senior analyst.
Work with the support team for issues faced in the tool and follow it through to closure.
Monitor alarms and keep the MTTD and MTTR without SLA breaches.
Requirements
A relevant undergraduate or postgraduate degree is required.
2 -3 years’ relevant experience.
Experience with SIEM, EDR, XDR, SOAR tools.
Excellent communication skills in English.
