Invesco - SOC Analyst - SIEM

Role : SOC Skills : SOC Analyst, SIEM Exp : 5 -15 years Location : Hyderabad Job Description : Summary : Oversees technology development solutions through new and existing applications, systems architecture, applications, data infrastructure/warehouses and machine learning algorithms and infrastructure (applications for the firm including both internal and external products). Includes maintenance and support of applications. Reviews system requirements and business processes; codes, tests, debugs and implements software solutions. Evaluates and develops data security policies and procedures, safeguarding information and systems and identifying new areas of risk. Prevents, monitors and responding to breaches and cyber-attacks through continuous development of the firm's technical security capabilities. About Invesco Information Security : Do you aspire to be a part of a global organization that recognizes security as a critical component in its trust relationship with clients, staff, business partners and shareholders? Do you want to collaborate and learn from like-minded security professionals with varied experience's from Govt. agencies like FBI in developing an intelligence-driven approach to security? Do you want to work in a highly collaborative and consultative environment that values everyones ideas on how to best protect, detect and respond to the latest physical and cyber threats impacting the financial industry? If this sounds like a team you want to be a part of, read on to learn more about the opportunity to join us. Job Purpose (Job Summary) : Advance Analyst provides a technical escalation point during Security Incidents, determining extent of threat and business impacts in partnership with applicable business or IT personnel as needed, then advising and performing the most suitable course of action to contain and remediate the incident. Provides further support and input to the monitoring team during high-priority incidents. Drive continuous improvement process to reduce false positives by identifying opportunities for content tuning, L1 procedure/playbook enhancements, etc. Key Responsibilities / Duties : - Responsible for acting on alerts, events, and incidents escalated from the Level 1 Analyst - Triage malware incidents, their priority and the need for escalation - Monitor for emerging threat patterns and vulnerabilities - Assist with recommendations and workarounds - Exhibit leadership qualities when and where required and act as shift lead - Coordinate with other external stakeholders - Communicate with management on incident updates - Ability to complete the incident lifecycle without higher level supervision - Establish and maintain intrusion detection and policies and offense rules - Tune response and alerting mechanisms - Import new signatures from manufacturer - Provide status reports to applicable management - Have a thorough understanding of technological requirements for client systems and provide guidelines to effectively mitigate security risks - Analyze and assess Firewall policy and rule base sets - The role requires to work on rotational shifts across 7 days of the week. - Assist with BAU activities if not responding to Experience / Knowledge : - 3 years of experience in Information Technology industry, preferably in a financial services organization with direct incident management experience. - Prior experience of network analysis tools, scripting languages, software vulnerabilities, exploits and malware - Prior experience of network traffic analysis for identifying any developing patterns - Ability to assume leadership role on ad-hoc basis for managing Level 1 Analysts - Experience of working in a high volume and result-oriented operational environment - Ability to read and understand system data including security event logs, system logs, application logs, and device logs, etc. - Possess solid understanding of enterprise grade technologies including operating systems, databases and web applications and applicable monitoring tools (e.g. SIEM, DLP, Internet filtering/blocking, IDS/IPS, firewalls, Anti-Virus, encryption technologies) - Demonstrated network traffic analysis capabilities for identifying any emerging patterns - Network infrastructure knowledge - Security configuration knowledge - Must be willing and able to perform 24-7 on-call duties as needed - Proficient operational understanding of how to ascertain, validate, and employ data from sources that are generally available to the public - Fluent in the techniques that actors utilize to attack an organization and understand how to pull information from large data sets and how to structure information for reuse - Proficient knowledge of collection and analysis methods as well as knowledge in multiple tools, utilized for data correlation - Ability to communicate assertively verbally as well as in writing- technical information clearly and concisely, commensurate with the audience - Maintain strict confidentiality of all security issues - Must be assertive, methodical and detail oriented - Must be a team player and self-starter - Ability to multi-task and work on more than one initiative at a time - Flexible able to meet changing requirements and priorities - Maintain current knowledge for all applicable technical areas Formal Education : (minimum requirement to perform job duties) : - BE or BA degree, preferably in technology/business or : (minimum requirement to perform job duties) : - Relevant certifications such as Security plus or Network plus or CEH or GIAC Certified Incident Handler (GCIH) in good Requirements Invesco Core : - Please refer to IPMP manual for competence descriptions - We are passionate about our clients success - Working together, we achieve more - We believe in the continuous pursuit of performance excellence - We earn trust by acting with integrity - People are the foundation of our success (ref:hirist.tech)

Location: hyderabad, IN

Posted Date: 4/11/2025