148 Security Analyst jobs in Chennai

Roles and Responsibility

• Conduct thorough risk assessments and vulnerability testing to identify potential security threats.
• Develop and implement comprehensive security strategies to mitigate identified risks.
• Collaborate with cross-functional teams to ensure seamless integration of security measures.
• Monitor and analyze security event logs to detect anomalies and respond promptly to incidents.
• Stay up-to-date with emerging trends and technologies in cybersecurity.
• Provide expert guidance on security best practices to internal stakeholders.

Job Requirements

• Strong understanding of security principles, including threat analysis and risk management.
• Proficiency in security tools such as firewalls, intrusion detection systems, and antivirus software.
• Excellent analytical and problem-solving skills, with attention to detail and the ability to work under pressure.
• Effective communication and collaboration skills, with the ability to work with diverse teams.
• Ability to adapt to changing priorities and deadlines in a fast-paced environment.
• Strong knowledge of industry standards and regulations related to security, such as HIPAA or PCI-DSS.

Role & responsibilities

• Pursue specialization in specific areas of security operations, such as threat hunting, malware analysis, or digital forensics, through targeted training and hands-on experience.
• Utilize Splunk SIEM and CrowdStrike EDR tools to monitor, detect, and respond to security incidents.
• Develop and execute security monitoring strategies and initiatives, working closely with the SOC management team to align efforts with organizational goals.
• Create and maintain standard operating procedures (SOPs) to ensure consistent and effective security operations.
• Support Monitoring Team to take remote session with user for troubleshooting the user machines to remove malware.
• Lead the preparation and delivery of weekly presentations to provide executive-level insights into SOC operations, including key metrics, trends, and emerging threats.
• Take ownership of false positive report preparations, ensuring accurate identification and documentation of false positives to improve detection and response capabilities.
• shift-leading capabilities, managing SOC operations during assigned shifts, including supervision of GET/Associate Security Analysts and coordination of incident response activities.
• Collaborate with the Security Specialist team on high-priority security incidents, providing expertise and assistance as needed to facilitate incident resolution.
• Flexible to Provide support to 24/7 L1 Monitoring shift members

Preferred candidate profile

• Proven experience using Splunk SIEM, including the ability to analyze prepared use cases, contribute to the creation of custom dashboards, and fine-tune false positive alerts.
• Good knowledge of SIEM architecture.
• Excellent skills in email security incident handling, including investigating phishing emails and providing verdicts, as well as basic knowledge of Office 365 Email Exchange.
• Experience with CrowdStrike EDR for security monitoring and threat detection, along with static and dynamic malware analysis and interactive sandbox report analysis capabilities.
• ITIL tool experience, particularly with Service-Now.
• Exposure to firewall and WAF log analysis.
• Strong knowledge of security SOP creation and maintenance.
• Basic knowledge of file integrity monitoring.
• Understanding of security compliance frameworks such as PCI and NIST.
• Basic understanding of vulnerability management and experience with tools such as Rapid7 and Nessus.
• Experience with cloud security monitoring, including AD risky detections and Defender for Cloud.
• Excellent communication and presentation skills.
• Commitment to continuous learning and professional development.
• Flexibility to work shifts from 1 PM to 10 PM and 3 PM to 12 AM

About the company

Lexitas is a high growth company. The Company is built on a belief that having strong personal relationships with our clients, and providing reliable, accurate and professional services, is the driving force of our success.

Lexitas offers an array of services including local and national court reporting, medical record retrieval, process service, registered agent services and legal talent outsourcing. Our reach is truly national as well as international.

Lexitas is a MNC Company that has set up a subsidiary in Chennai, India – Lexitas India Pvt. Ltd. This Indian company will be the Lexitas Global Capability Center, helping build a world class IT development team, and over time serve as a Shared Services hub for several of the corporate functions.

For More Information -

This is a Full-Time Job located in Chennai, India.

Summary:

This position supports information security, privacy, risk and compliance programs and activities under the direction of the VP of Information Security or designated Information Security Manager. The position assists in developing and maintaining a comprehensive security program for Lexitas. Providing functional and technical support is important to maintain security posture and protection of electronically and physically stored information assets across our systems. Tasks include supporting design, implementation, configuration, documentation, and maintenance to mitigate risk to the business and its computing resources and assets, as well as collaborating with applicable providers, managing and monitoring tools, and facilitating applicable processes and procedures.

Key Roles and Responsibilities :

• Supports IT security, privacy, risk and compliance systems, processes, supporting activities, with the ability to lead activities and programs.
• Monitors computer networks and associated tools and provider services for security, privacy, risk and compliance issues
• Supports the project management, tracking, and documentation of Information, Privacy, Risk, and Compliance programs, processes, and activities
• Investigate security breaches and cybersecurity incidents.
• Documents security breaches and assesses impact.
• Performs and/or supports security tests, risk assessments, and audits to uncover network, application, and process vulnerabilities and provides guidance and training to ensure violations do not persist.
• Tracks and facilitates the mitigation of vulnerabilities to maintain a high security standard.
• Supports best practices for IT security, privacy and compliance.
• Performs and supports 3rd party vulnerability management and penetration testing.
• Research security enhancements and makes recommendations to management.
• Stays current on information technology trends and security standards.
• Prepares reports that detail security, privacy, and compliance risk assessment findings.
• Supports Security Operations Center functions including monitoring and supporting Incident Response activities.
• Supports all related IT Security, Privacy, Risk and Compliance policies and provides guidance to the business.
• Other Information Security, Privacy, Risk, and Compliance duties as required.

Skills and Abilities:

• Experience with computer network and application vulnerability management and penetration testing, and techniques.
• Solid understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Ability to identify and mitigate network and application vulnerabilities.
• Good understanding of patch management
• Proficient with various OS
• Excellent written and verbal communication skills
• Knowledge of firewalls, antivirus, and intrusion detection system concepts
• Ability to support and document areas of Information Security, Privacy, Risk, and compliance processes and programs.
• Ability to support incident response process.
• Experience directing 3rd Party providers in the areas of Information Security, Privacy, Risk and Compliance
• Support information security controls including physical and data security protecting the confidentiality, integrity and availability of information systems data.
• Preferred KSA’s:
• Strong working knowledge and experience with primary Information Security, Privacy, Risk, and compliance standards and frameworks such as NIST, SOC 2, HIPAA, PCI DSS, GDPR, etc.
• Experience administering information security software and controls.
• Experience supporting process for managing network and application security.
• Network and system administration experience a plus.
• Good understanding of Standard Information Security Baseline Frameworks, Business Continuity, and Disaster Recovery protocols and best practices.
• Exposure to ITIL (Incident/Change Management) – ITIL v3F preferred.
• Learns and monitors the business processes for the areas of primary support responsibility.
• Support annual Security Baseline Audits and execution of recommendations.
• As part of the technology team, performs “Help Desk” day-to-day tasks in support of Information Security, Privacy, Risk, and Compliance.

Education and Experience:

• Bachelor’s degree in computer science or related field strongly preferred.
• IAT Level-2 technical certification strongly preferred (Comp TIA Security+ or CISSP) or ability to obtain within first 90 days of hire.
• 5+ years’ experience performing role of Information Security Analyst or SOC
• Demonstrated experience in responding to, managing, and resolving security incidents.
• Experience with LAN/WAN networking concepts, IP addressing and routing concepts, Windows/Linux/Unix operating systems, Information Security concepts, and best practices.
• Experience with Windows/Linux/Unix operating systems, Information Security concepts, and best practices.
• Experience working with Security Information and Even Management (SIEM) system is a plus.

• An Information Security Analyst monitors and protects an organization's computer networks and systems from cyber threats and data breaches. Key responsibilities include implementing security software like firewalls and encryption, conducting vulnerability assessments and penetration tests, responding to and mitigating security incidents, developing security policies and best practices, creating disaster recovery plans, and educating employees on security awareness. They stay current with emerging threats and often collaborate with IT staff and management to enhance overall security posture.
• Key Responsibilities Monitoring and Detection: Continuously monitor networks for suspicious activity, potential breaches, and viruses.
• Vulnerability Assessment: Identify weaknesses in systems and networks through testing and analysis to prevent unauthorized access. .
• Incident Response: Investigate, respond to, and mitigate security incidents and cyberattacks to minimize damage.
• Implementation of Security Measures: Install and maintain security safeguards, including firewalls, encryption software, and antivirus programs.
• Policy Development: Create and enforce security policies, standards, and best practices for the organization. .Reporting: Prepare detailed reports on attempted attacks, security breaches, and security metrics for management and stakeholders.
• Disaster Recovery: Develop and help implement disaster recovery plans to ensure continued IT operations during emergencies.
• Employee Education: Train employees on cybersecurity awareness, proper security procedures, and best practices to prevent attacks.
• Research and Awareness: Stay updated on the latest cybersecurity trends, technologies, and emerging threats by consulting external sources and industry publications.
• Essential Skills
• Technical Proficiency: Deep knowledge of computer networks, operating systems, security tools, and programming languages like Python and JavaScript.
• Analytical Skills: Ability to quickly process large datasets to identify security vulnerabilities and patterns.
• Communication Skills: Strong ability to explain complex technical information clearly to both technical and non-technical audiences.
• Problem-Solving: Aptitude for diagnosing issues and developing effective mitigation techniques for security threats.
• Attention to Detail: Meticulous in monitoring systems and reviewing security measures for potential gaps.
• Tamil candidates only

Job Type: Full-time

Pay: ₹340, ₹1,167,607.61 per year

Benefits:

• Food provided

Work Location: In person

Information Security Analyst

ROLE DESCRIPTION SUMMARY

SES's Cyber Security Center Teamis focused on improving SES's security posture through security monitoring, vulnerability management, monitoring and analytic tools, and actively seeking out and addressing security concerns. An Information Security Analyst must be aware of the enterprise's security goals, policies, procedures, and guidelines, and be actively working towards upholding those goals.

PRIMARY RESPONSIBILITIES / KEY RESULT AREAS

• Monitor and analyze security logs, system logs, and network traffic for security events.
• Assist various teams in configuring diverse devices for logging.
• Perform in-depth root cause investigation and analysis.
• Conduct incident response to security events and incidents.
• Address security concerns in a way that is consistent with applicable policies, plans, and processes.
• Analyze, triage, aggregate, escalate, and report on security events, including investigation of anomalous activity and responses to cyber incidents.
• Document security processes to create playbooks and other documentation based on best practices and policy.
• Research and suggest improvements for the corporate security posture.
• Present security-related material in meetings.
• Work to ensure assigned tasks and projects are completed on time.

COMPETENCIES

• Having good organizational skills and able to manage multiple tasks.
• A willingness to engage and coordinate with others in the Threat Management team.
• Employing good communication skills to coordinate with your team and others at SES.
• Having a willingness to dig into details and seemingly unglamorous tasks.
• Have strong logical analysis skills focused on details.
• Strong critical thinking/analytic skills, creativity, and a personal desire for quality.

QUALIFICATIONS & EXPERIENCE

• Must Have

• Two-year college degree in a technical field of study or equivalent work experience

• Technical knowledge and practical experience in networking, remote network access, network connected devices, network service software, and troubleshooting techniques.
• Experience working in a SOC or similar environment.
• Experience with reviewing IDS/IPS, EDR, firewall, OS, application, and other logs for security purposes.
• Competence in data sorting, manipulation, and correlation.
• Experience utilizing a Security Information and Event Management (SIEM) system to identify security issues for remediation, make rule modifications, make improvements in log handling, and perform data extraction for further analysis.
• Experience with threat and vulnerability management, penetration testing, vulnerability assessments, and vulnerability mitigation.

• Conduct comprehensive analysis of threat data obtained from proprietary and open-source threat intelligence resources for potential and known.

• Nice to Have

• Experience in the with using various aspects of enterprise security architecture including SIEMs, EDR, and similar software.

• Familiarity with a variety of OSes including Microsoft Windows, Linux, and network appliance operating systems.
• Experience manipulating data with Microsoft Excel and document writing in Microsoft Word.
• Knowledge of a scripting language such as BASH, PowerShell, Python, etc.
• One or more of the following security certifications: Security+, CEH, CYSA+, GCIA, GSEC, GCIA, GMON and GCDA.

SES and its Affiliated Companies are committed to providing fair and equal employment opportunities to all. We are an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law.

For more information on SES, click here.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3 years of experience in information security or cybersecurity.
• Strong knowledge of security principles, best practices, and frameworks (e.g., NIST, ISO 27001).
• Experience with security tools such as SIEM, IDS/IPS, firewalls, and antivirus solutions.
• Understanding of network protocols, operating systems, and application security.
• Experience in incident response and forensic analysis is a plus.
• Relevant certifications such as CompTIA Security+, CEH, or CISSP are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong written and verbal communication skills.
• Ability to work effectively both independently and as part of a collaborative team.