Onsite
Security Operations Center Analyst (SOC)
Total Experience : 12 Years
Location : Karnataka, India
See more details and required skills
Description
- Good understanding of product architecture, network architecture, Purdue model
- Good Understanding of MITRE attack framework – Enterprise and ICS
- Good understanding of compliance and standards: IEC 62443, NIST, NIST - IR 8428,GDPR, ISO
- Good understanding of Understanding of Network security: Understanding of network security principles, including firewalls, IDS/IPS, VPN, and DMZ.
- Security tools: Should be familiar with security tools such as SIEM (Security Information and Event Management), endpoint protection, vulnerability scanners, intrusion detection systems, Wireshark, etc.
- Knowledge of OT protocols: OT protocols such as Modbus, DNP3, IEC 61850, and OPC. They should be able to interpret these protocols and understand their vulnerabilities.
- Malware analysis: knowledge of malware analysis techniques to identify and analyze malware in the OT network. They should be able to analyze malware behavior and identify indicators of compromise.
- SCADA systems:. They should be able to identify vulnerabilities in SCADA systems and develop security measures to protect them.
- Industrial control systems (ICS): Should know ICS, including programmable logic controllers (PLCs), human-machine interfaces (HMIs), and supervisory control and data acquisition (SCADA) systems. They should be able to identify vulnerabilities in ICS and develop security measures to protect them.
Certification: Any CCNA/ CEH/ CompTIA Security+, SIEM
Mandatory to have Cybersecurity understanding and packet capture experience and OT SOC.
Responsibilities
- Good understanding of product architecture, network architecture, Purdue model
- Good Understanding of MITRE attack framework – Enterprise and ICS
- Good understanding of compliance and standards: IEC 62443, NIST, NIST - IR 8428,GDPR, ISO
- Good understanding of Understanding of Network security: Understanding of network security principles, including firewalls, IDS/IPS, VPN, and DMZ.
- Security tools: Should be familiar with security tools such as SIEM (Security Information and Event Management), endpoint protection, vulnerability scanners, intrusion detection systems, Wireshark, etc.
- Knowledge of OT protocols: OT protocols such as Modbus, DNP3, IEC 61850, and OPC. They should be able to interpret these protocols and understand their vulnerabilities.
- Malware analysis: knowledge of malware analysis techniques to identify and analyze malware in the OT network. They should be able to analyze malware behavior and identify indicators of compromise.
- SCADA systems:. They should be able to identify vulnerabilities in SCADA systems and develop security measures to protect them.
- Industrial control systems (ICS): Should know ICS, including programmable logic controllers (PLCs), human-machine interfaces (HMIs), and supervisory control and data acquisition (SCADA) systems. They should be able to identify vulnerabilities in ICS and develop security measures to protect them.
Certification: Any CCNA/ CEH/ CompTIA Security+, SIEM
Mandatory to have Cybersecurity understanding and packet capture experience and OT SOC.
Similar Jobs