Job Description

View All Jobs

Analyst- II, Security Operations

× Email This Job Your First Name
Your Last Name
Your E-Mail Address
E-Mail Address to Share With
Subject
Message
Prove you're not a robot Send E-Mail Close India-Gurugram

• Apply
• × Employee Referral Tell Us Who You Are First Name
  Last Name
  E-Mail Address
  Please complete all 3 fields. How Do You Want to Share?
  Close

Cvent is an exciting, fast-growing tech company that provides industry-leading software to more than 300,000 event professionals and hoteliers around the world. The economic significance of our industry is undeniable: Meetings and events boost the global GDP by more than $1.5 trillion and impact nearly 26 million jobs; and for more than 20 years, Cvent has led the transformation of our industry with our market-leading technology.

About Cvent:

Cvent is a global meeting, event, travel, and hospitality technology leader, with more than 4,000+ employees worldwide. As a leading cloud-based technology company, we have over 28,000+ customers, including 80% of the Fortune 100 companies, in more than 100 countries.

Cvent’s software solutions optimize the entire event management value chain and have enabled clients around the world to manage hundreds of thousands of meetings and events. In addition to helping event planners navigate every aspect of the event process, we also provide an integrated platform to hoteliers to help create qualified demand for their hotels, manage that demand more efficiently, and measure their business performance in real-time.

About this role:

As a SOC Security Analyst you will be responsible for conducting incident response operations according to documented procedures and industry best practices. Candidates in this role must have excellent communication skills; able to interact with executive levels throughout the company. Must have extensive experience in multiple security areas such as SIEM, IDS, APT, and WAF. Candidates will be required to participate in multiple intelligence communities and be able to disseminate pertinent information throughout the SOC. Ideal candidates should have extensive experience in Linux and Windows operating systems, deep knowledge of networking and attack methods such as SQLi and pivoting. Enthusiasm and interest in Information Security must be displayed. Perform monitoring and data correlation to events of interest using multiple tools such as system event logs, SIEM, IPS/IDS logs, network traffic, anti-virus console and client end-point software to determine if there is an incident.

What you will be doing:

• Respond to security incident and investigation requests in line with established SIRT processes and procedures within defined service level targets
• Drive containment strategy during data loss or breach events
• Triage and resolve advanced vector attacks such as botnets and advanced persistent threats (APTs)
• Perform basic forensic activities e.g. conducting examinations of computers, system logs, applications and networks to locate evidence
• Perform Root cause analysis (RCA) for the incidents and update the knowledge management
• Works directly with data asset owners and business response plan owners during high severity incidents
• Tuning of IDS, proxy policy, in-line malware tools based on threat feeds, trust and reputation data, incidents, or vulnerabilities and exploits of downstream systems
• Provide tuning recommendations to administrators based on findings during investigations or threat information reviews

What you will need for this position:

• Relevant Experience: hands-on working 2-4 years
• Hands-on investigation and log analysis exposure
• Experience in IT security and defensive technologies (Antivirus, Firewalls, Event Monitoring, Network and Perimeter devices, Data Loss Prevention, IDS, Web content filtering)
• Should be familiar with handling and mitigating attacks related to viruses, spoofing, hoaxes, malware
• Should be familiar with emerging security threats and their attack vectors especially web application attacks
• Knowledge of SSL/TLS, certificates and encryption methods
• Exposure to security tools (Web application firewalls, web application security scanning with Burp Suite or Paros, Nessus and Tenable Security Center, Snort IDS, Wireshark, Data Loss Prevention software)
• Excellent verbal and written English communication skills are most important for the role.
• Good documentation, analysis skills with excellent problem solving and planning skills with a flexible approach
• Sound understanding of OS (Unix/Linux, Windows, OSX), IPS/IDS, VPN, Firewalls, Web Application Firewalls, Application Security.
• Accredited Certification on Incident Handling (CEH, GCIH, ECIH)
• Educational qualifications: B.E, B. Tech, BCA, MCA .

Physical Demands Notice