Sr Threat Analyst | On-site, Bangalore

Bengaluru, Karnataka, India

Apply with AI Apply

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Information Technology, CybersecurityIndustries

Requirements

Candidates must have 6 or more years of full-time professional experience in Information Security, with experience in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment as a point of escalation. Excellent time management, reporting, and communication skills, including customer interactions and executive presentations, are required. Proficiency in data analysis using SIEM, Database tools, and Excel, along with experience troubleshooting security devices and SIEM, is necessary. Experience with SIEM platforms such as Exabeam, Elastic, SentinelOne, QRadar, LogRhythm, McAfee/Nitro, ArcSight, or Splunk is preferred. Familiarity with SANS top 20 critical security controls and enterprise Windows security, including Active Directory, privilege escalation techniques, and system hardening, is expected. Experience monitoring commercial AV solutions like McAfee/Intel, Symantec, Sophos, or Trend Micro, understanding malware propagation, web-based exploit kits, Advanced Persistent Threats, and malware protection tools like FireEye is also required.

Responsibilities

The Senior Threat Analyst will provide deep-level analysis for client investigations using customer-provided data sources, audit, and monitoring tools. Responsibilities include working closely with Technology Engineers, Architects, and Threat Analysts, documenting and reporting on potential security incidents, and maintaining an understanding of security threats, vulnerabilities, and exploits. The analyst will perform analysis on security enforcement technologies, conduct knowledge transfers, train clients on threat mitigation, and provide recommendations on tuning and best practices. Additionally, they will research current threats, investigate escalations, discuss security posture with clients, provide gap analysis, maintain and develop SOPs and Playbooks, train new analysts, create and maintain a Content Catalog, and perform quality assurance reviews of security alerts.

Skills

Threat Analysis

SIEM

Intrusion Detection Systems

Vulnerability Scanners

Malware Prevention

Firewalls

Web Application Firewalls

Content Filtering

Security Operations Center (SOC)

Incident Response

Security Posture Assessment

SOP Development

Playbook Development

Runbook Development

Quality Assurance

Professional Writing

Threat Research

Attack Vectors

Optiv

Cybersecurity advisory and solutions provider

About Optiv

Optiv helps businesses manage and reduce cyber risks by providing advisory services and solutions tailored to their specific needs. Their services cover the entire cybersecurity lifecycle, including strategy development, technology validation, and implementation of security measures. They serve nearly 6,000 clients across various industries, such as retail, manufacturing, and healthcare, ensuring that sensitive information is protected and digital systems remain secure. Unlike many competitors, Optiv focuses on customized solutions and ongoing support, adapting to the evolving cybersecurity landscape. Their goal is to empower organizations to secure their operations effectively and prepare for future challenges in technology, such as AI and IoT.

Denver, ColoradoHeadquarters

2015Year Founded

$12MTotal Funding

ACQUISITIONCompany Stage

Cybersecurity, AI & Machine LearningIndustries

1,001-5,000Employees