The Lead SOC Analyst will lead Security Operations worldwide for Gainsight, a growing Software as a Service innovator. This person will define, monitor, and improve behaviour, metrics, and processes around Intrusion Detection and Incident Response, prevention, and handling. Security operations involve assets, interfaces and processes across diverse territories, internet exposure and application/platform landscape. The role takes pride in handling security operations across technology organization.
Define, refine, implement, measure, monitor and report key metrics around intrusion and incidents response.
Front end threat definition, measurement, monitoring and management operations across the landscape.
Religiously align and exceed SLA expectations and commitments in all activities that are part of this role.
Derive paths of solutions in situations that demand attention on multiple tracks of incidents of conflicting priorities, severities and complexities.
Demonstrate expertise in core network, platform and security operations ranging from network intrusions to vulnerability management to endpoint operations.
Perform log and event correlation on continuous and complex evolving systems spitting huge and diverse nature of data.
Implement industry best practices around IDS, IPS, SIEM and Threat analysis.
Lead the organization and industry, at large, in setting standards, procedures and processes around Security operations.
Mentor junior members in implementing implementing best tools, processes and monitoring mechanism with approaches like training, 3rd party trainings, certifications and other approaches.
Manage effective coverage of security operations across timezones.
What we’re looking for
8-12 years of hands on experience in SOC, Incident Response, at least two types of enterprise SIEM.
Strong practical knowledge of Windows, Linux systems, related threats & incidents
Exceptional skills in triage, identification, measurement, containment, mitigation of incidents.
Previous experience with tools used in monitoring the network, including log management systems, ticketing systems, and network health systems
Any one certification among CISSP, GCIH, GCT, CCNA CyberOps, CSOCA, ECSA, OSCP, SSCP.
Willing to work in shifts, as required.
Nice to have skills: programming/scripting, CEH certification, AWS Associate, previous experience mentoring junior associates.
Individuals seeking employment at Gainsight are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.