Key Facts

Remote From:

Internships

Entry-level / graduate

English

Hard Skills

Security Operations (SecOps) Bash (Scripting Language) Cyber Security Information Systems Security Microsoft Azure Firewall Multi-Factor Authentication Encryption SMTP (Simple Mail Transfer Protocol) Denial-Of-Service (DoS) Attacks +13 more

Other Skills

•
Verbal Communication Skills
•
Teamwork
•
Prioritization
•
Analytical Thinking
•
Analytical Skills
•
Problem Solving

Roles & Responsibilities

Basic knowledge of Security Operations Center (SOC), Cyber Security, and Information Security
Familiarity with Azure, EDR/XDR, SOAR, SIEM tools, firewall, IDS/IPS, MFA, encryption
Scripting knowledge with Bash, PowerShell, or Python for incident response across Windows, Linux, and Mac hosts
Strong oral and written communication skills; basic understanding of MITRE ATT&CK Framework and/or Cyber Kill Chain

Requirements:

Triage security incidents identified by SOC analysts
Identify enhancements to rule sets and other tool optimization to automate reporting and reduce false positives in unified SIEM and review with manager / senior team members for implementation
Coordinate with SOC manager to escalate security issues to other business units including solutions development, customer hosting and corporate IT
Subscribe to threat intelligence services and monitor vendor alerts for major vulnerability disclosures

Job description

Profile: IT Cyber Defense Analyst-Intern
Location: Pune (Hybrid)
Shift: Rotational (24/7)

Required skills:
• Basic knowledge of Security Operation Center (SOC), Cyber Security, and Information Security.
• Basic knowledge about Azure, EDR, XDR, SOAR, SIEM Tools, Firewall, IDS/IPS, multi-factor authentication, encryption etc.
• Basics understandings about TCP/IP, HTTP, FTP, SMTP, DNS.
• Familiarity with network and application threats such as DoS/DDoS, SQL injection, XSS, reconnaissance scanning, and methods to avoid detection.
• Good to be familiar with the MITRE ATT&CK Framework and/or Cyber Kill Chain.
• Have scripting knowledge with Bash, PowerShell, or Python and the ability to use these skills to aid in responding to incidents involving Windows, Linux, and Mac hosts.
• Have strong oral and written communication skills.

Responsibilities:

1. Triage security incidents identified by SOC analysts.
2. Identify enhancement to rule sets and other tool optimization to automate reporting and reduce false positives in unified SIEM and review with manager / senior team members for implementation.
3. Coordinate with SOC manager to escalate security issues to other business units including solutions development, customer hosting and corporate IT.
4. Collaborate with business units to prioritize vulnerability remediation and execution of planned activities.
5. Subscribe to threat intelligence services and monitor vendor alerts for major vulnerability disclosures.
6. Monitoring of advanced security tools, perform analysis of dissimilar indicators, correlation of multiple sources, alert & coordination of security incidents across the environment.
7. Review & analyze system logs and third-party management products to preemptively detect, take defined corrective actions and alert process/system owners to new issues.
8. Assist with creation and maintenance of security incident response procedures.
9. Participate in research and assist implementation of security tools used by SOC team.
10. Assist SOC manager with dashboards and business reporting.
11. Ready to work in rotational 24/7 shift.