- Working in 24/7 roster-based shifts.- Monitor, investigate, triage, contain, and mitigate real time security logs, alerts, and incidents.- Administration of SIEM (IBM Qradar) including use cases creation, Logs parsing and devices integration.- Playbooks creation to follow standard procedures for effective case closure.- Implementation of advisories and Threat Intelligence feeds over SIEM and other security controls.- Monitor other security tools like Email Security appliance, Kaspersky EDR, Trend micro-Deep discoverytools, Cisco NDR and WAF etc. for better insight of alerts and incidents.- Provide guidance for L1 analysts in analyzing events and response activities.- Follow up cyber security incident tickets till closure.- Review Daily/weekly /Monthly dashboard reports and share with relevant stake holders.- Configure and fine-tune security toolset to reduce false alarms and increase fidelity of the overall system.- Creating and continuously improving standard operating procedures used by the SOC.- Sound knowledge of MITRE or similar frameworks and procedures used by adversaries.- Analyzing Phishing and Spam related emails.- Conducting SOC maturity assessments.- Perform additional duties assigned by management.

KEY RESPONSIBILITIESL
- Overseeing all IT operations including staff and infrastructure. - Provide functional and technical support to of 250+ systems within the organization. - Administration, installation, configuration and troubleshooting of windows server including’sDomain controller, Active directory, Email server, DHCP, DNS, Hyper-V, File server, VPN server,Antivirus server and Firewalls. - Manage Router, switches, VOIP and wireless network.- Management of IT operations (IT Development, Help Desk Support).- Coordinate with other departments to determine and addressing their IT needs and requirements.- Identifying vulnerabilities, the need for upgrades and opportunities for improvement.- Maintenance of all IT assets, records, documentation and IT Infrastructure.- With proactive management, inform administration about the issues that may arise/occur in thefuture with cost effective solutions.- Perform additional duties as assigned by management and available 24/7.
Network and System Skills:
- TCP/IP: 7’s Layers, IP Addressing, Subnetting and VLSM.- Switching: VLANs, Trunks, VTP, Ether Channel/Port-Channel, STP, RSTP, CEF, Layer2security, Multilayer Switching and Troubleshooting.- Routing: Static, RIP, OSPF (Single & Multiple Areas, ABR, ASBR, Virtual Links), EIGRP, BGP,HSRP, VRRP, GLBP, NAT/PAT, ACLs, Route Summarization, Route Redistribution, Route Mapsand SolarWinds.- Firewall & VPNs: PaloAlto, Site to Site VPN, Remote VPN, IPSec and GRE over IPSec.- Windows: Windows Server 2008/2012, DC, DNS, DHCP, RDS, FS, virtualization and ISA/TMGproxy server.

Key Responsibilities:
• Provide technical support to 15 remote branches and LAN network of 200+ systems within the organization.• Installation and troubleshooting of workstations with user level securities and permissions.• Installation and configuration of different software’s product as per client requirement.• Upgrade systems and network with new releases and models.• Participates in the implementation of new technologies across the bank security, disaster recovery, standards and service provision.