SOC Engineer

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI.

At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world.

The Opportunity:

ECI has an exciting opportunity for a SOC Engineer, who is responsible for analyzing and responding to network security events. The SOC Engineer will work collaboratively to detect and respond to information security incidents, maintain and follow procedures for security event alerting, and participate in security investigations. The SOC Engineer will perform tasks including monitoring, research, classification, and analysis of security events that occur on the network or endpoint.

In this role, you will act as a shift lead and review tickets before they are being escalated to clients. You will Investigate intrusion attempts and perform an in-depth analysis of exploits.

This is an Onsite role.

What you will do:

• Acts as shift lead by managing the incident queue and assign incidents to available analysts based on priority. Make sure the incident is handled from end to end with defined SLA.
• Conduct expert analysis of SIEM logs to drive event and incident analysis. Provide expertise in categorizing and deep dive event logs to support timely and effective decision making in handling security breach cases. Launch and track investigations until resolution.
• Work with client or internal support teams to mitigate security threats and help them in improving the security posture of client environment.
• Perform threat hunt activities based on latest security vulnerabilities, advisories, and penetration techniques. Mitigate security threats and notify client.
• Contribute to the creation of SOC policies, procedures, and configuration standards.
• Manage and Administer security tools such as SIEM, EDR, Email gateway, etc.
• Advanced working skills with any one of the SIEM tools (ELK, Splunk, Qradar).
• Rule base Management, SOC Fine tuning. (Administer SIEM tool)
• Maintain 'On Call' availability for critical incident response scenarios and urgent threats.
• Demonstrate strong analytical, diagnostic, innovation, and collaboration skills.
• Exhibit enthusiasm, adaptability, and a passion for continuous learning, growth, and sharing of knowledge.
• Showcase exceptional presentation and communication abilities.
  
  

Who you are:

• 3-5 years’ experience in the IT security industry, preferably working in a SOC environment.
• Bachelor’s in computer science/IT/Electronics Engineering, M.C.A. or equivalent University degree
• Certifications: CCNA, CEH, CHFI, GCIH, ITIL
• Experience with Security Information Event Management (SIEM) tools, creation of correlation rules and fine-tuning rules to administration of SIEM.
• Administration of Email security gateways, EDR, Antivirus Solutions.
• Should have expertise on TCP/IP network traffic and event log analysis.
• Configuration and Troubleshooting experience on Cisco ASA, PaloAlto firewalls would be an added advantage.
• Ability to work with minimal levels of supervision.
• Willingness to work in a job that involves 24/7 operations.
• Shift management and scheduling.
• Remain vigilant while continuing to maintain and enhance the overall security of ECI and the client’s receiving our services.
• Maintain awareness about the potential risks based on the environment they are operating in and the clients they are working on
  
  

Bonus points if you have:

• Knowledge and hands-on experience of implementation and management of IDS/IPS, Firewall, VPN, and other security products
• Knowledge and hands-on experience with SIEM tools
• Knowledge of ITIL disciplines such as Incident, Problem and Change Management
• Strong verbal and written English communication.
• Strong interpersonal and presentation skills
  
  

ECI’s culture is all about connection - connection with our clients, our technology and most importantly with each other. In addition to working with an amazing team around the world, ECI also offers a competitive compensation package and so much more! If you believe you would be a great fit and are ready for your best job ever, we would like to hear from you!

Love Your Job, Share Your Technology Passion, Create Your Future Here!