SOC Engineer

Technology (I.T., and Systems) Mumbai, India


Description

Position at DNEG

 

Job Title: SOC Engineer

 

Location: Mumbai

 

                     Job Description

                     Overview

 

DNEG’s Information Security (InfoSec) program has the requirement to build an internal Security Operations (SecOps) function in order to successfully preserve the confidentiality, integrity and availability (CIA) of its, and client’s, confidential data, PII and systems and services. The overview of the SecOps program is listed below.

 

 

                     Mandatory Requirements and Expectations

 

 

The building block in actualizing the SecOps function, will be to recruit a Security Operations Centre (SOC) analyst to assist with enhancing the SecOps function’s capabilities to meet the requirements of the SecOps program.

 

        Working closely with the SecOps Lead to ensure that all monitoring, detection, investigation and response to all security related events are suitably actioned.

        Experience of working within a dynamic and technically diverse environment.

        Respond to, and address all, BAU operational security queries and issues that have been raised by peers and colleagues.

        Familiarity with security incident response processes and procedures.

                     Duties and Operational Responsibilities

 

        To monitor for potential and identified areas of compromise and investigate, verify and escalate and action accordingly.

        Assist with documenting SOC processes and procedures to further mature and streamline existing workflows.

        Work in close partnership and collaborate with peers and internal technical teams.

        Document findings derived from external assurance testing (PEN Testing) reports.

        Manage remediation of findings with IT teams that are responsible for the infrastructure.

        Manage and maintain the BAU aspects of the vulnerability assurance program.

        Scheduling vulnerability assessments and running ad-hoc scans when required.

        Manage remediation of findings with IT teams that are responsible for the infrastructure.

        Work proactively, independently and partner with other internal teams.

                     Mandatory Job Requirements

 

A successful candidate will meet the majority of the requirements listed below and will be able demonstrate suitable experience in competencies in each of the following:

 

        Three to Five years, plus/minus, of working in a SOC capacity.

        Experience and knowledge of cybersecurity operations, incident response (IR) management, processes and procedures and investigations.

        A strong team player with a positive professional manner.

        Experience and demonstrable, technical knowledge, with the following:

        Network Security: Firewalls, IDS/IPS, Proxy Servers, Email and Web Content Filters.

        Anti-Virus/Malware Mitigation (EPP): Signature and signatureless EPP solutions.

        Access Control Concepts and Application.

        DLP Solutions

        Operating Systems: MS Windows (Client and Server O/S); multiple LINUX distributions, Mac OSX

        Excellent and demonstrable, technical knowledge, application and experience with the following:

        Security data analytics and reporting.

        SIEM, security data aggregation and correlation knowledge.

        Desirable knowledge and experience of working with the following Information Security frameworks:

        ISO 27001:2013

        PCI/DSS

        CIS

        NIST

        Desirable knowledge and experience of working with the mobile O/S’s and applying security controls such as MDM and MAM.

        Familiarity with BYOD and remote working.

        Experience and demonstrable and knowledge of identity management systems and processes and be familiar with both existing and emerging threats as they pertain to IdAM.

        Working knowledge and experience of using vulnerability assurance management toolsets and services.

        Working knowledge and experience of network and application penetration testing methodologies and practice.

        Willingness to assist in enhancing and maturing existing and applied InfoSec technologies that are utilized for the SecOps function.

        Knowledge of privacy compliance and privacy frameworks and their applicability to a SecOps function would be desirable, e.g., GDPR, would be desirable.

        Working knowledge and experience of Cloud Security (especially SaaS and PaaS), concepts and application.

        Demonstrate experience of working within an ITIL framework and familiar with IT ticketing systems.

        Highly motivated and bring a forward thinking and highly collaborative approach to the SecOps function

 

                     Education

 

        A bachelor’s degree in IT or Computer Science is desirable.

        Any InfoSec certifications, e.g., Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) and any IT certification/accreditation, such as a Cisco CCNA etc., is desirable.


About Us
We are DNEG, one of the world’s leading visual effects and animation studios for the creation of feature film, television and multiplatform content. We employ nearly 7,000 people with worldwide offices and studios across North America (Los Angeles, Montréal, Toronto, Vancouver), Europe (London) and Asia (Bangalore, Chandigarh, Chennai, Mumbai).