Athul Yesudas

SOC Analyst

Genpact

Hyderabad

07.2022 - Current

Monitor security alerts and events from various sources such as SIEM, IDS/IPS, firewalls, and other security tools
Perform real-time analysis and correlation of security events
Respond to security incidents, including malware infections, phishing attacks, and network intrusions
Conduct initial analysis, containment, eradication, and recovery of security incidents
Document incidents and prepare incident reports
Proactively search for threats and vulnerabilities within the organization's network
Analyze threat intelligence and correlate it with internal security events
Manage and maintain security tools and technologies
Ensure the continuous operation and effectiveness of security monitoring systems
Perform regular vulnerability assessments and penetration testing
Coordinate with IT teams to remediate identified vulnerabilities
Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, NIST, GDPR)
Prepare and present regular security reports to management
Collaborate with other IT and security teams to enhance overall security posture
Provide security awareness training to employees
Security event management on 24
7 shift
Monitor incoming event queues for potential security incidents
Security incident management, 1st level triaging, issues and RCA
Communicate SOC client service delivery issues to SDM and coordinate remediation
Attend client calls as and when needed to assist SDMs with dissemination of security and event information
Familiarity with tools such as: IDS/IPS, DLP, Proxy, WAF, EDR, AV, MVM, Sandboxing, FWs, Threat Intel, Pen Testing, APT
Analysis of network data (e.g., packets, logs) and endpoint data (e.g., logs, malicious artifacts) in both structured and unstructured methods using SIEM and various tools
Review SOC reports and deliverables