SIEM Analyst

Senior Manager - SIEM Analyst

About Us

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.

SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, colour, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.

Join us to shape the future of digital payment in India and unlock your full potential.

What’s in it for YOU

1. SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees
2. Admirable work deserves to be rewarded! We have a well curated bouquet of rewards and recognition program for the employees
3. Dynamic, Inclusive and Diverse team culture 
4. Gender Neutral Policy
5. Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
6. Commitment to overall development of an employee through comprehensive learning & development framework

Role Purpose 

Responsible for supporting SBIC's Threat detection and prevention capabilities for SOC/SIEM Platform. The role is also responsible for supporting Security Operations by initiatives and innovations for control enhancement & investigation as and when required

Role Accountability 

1. Develop and run program for managing event based security monitoring by leveraging MSSP resources
2. Collected, analyze and validate all Security information and event management (SIEM) & Cyber Threat Intelligence (CTI) activities that impact threat detection capability of organization
3. Manage monitoring, responding, mitigation, reporting, compliance to SLA's and security incidents related to IT systems covered under security programs like SIEM, DLP, Anti-Phishing Brand and Dark-Web Monitoring
4. Develop, implement, maintain and operate standard content development practices for SIEM infrastructure
5. Develop reports, dashboards, real-time rules, filters, and active channels, etc.
6. Configure SIEM tool performance and event data quality to maximize SIEM system efficiency
7. Conduct and oversee advanced threat hunting operations using known adversary tactics, techniques, and procedures to detect adversaries with persistent access to the enterprise
8. Identify and prevent and/or investigate suspicious events through event, pattern, correlation, and behavioral analysis of data from a range of systems and applications
9. Perform process documentation and compliance adherence

Measures of Success 

1. Threat Detection Mean-time-to-detect (MTTD)  & Response( MTTR)
2. Increase in maturity of Threat detection capabilities against industry benchmark and framework
3. Qualified metric of True Vs False Positive Alerts & Incidents
4. Adherence to security monitoring best practices within SBI Card
5. Timely delivery of project plans, milestone updates, presentations, assessment reports etc. to relevant stakeholders 
6. Process Adherence as per MOU

Technical Skills / Experience / Certifications

1. Experience on various operating systems, implementation/ Run & Maintain of network and security devices like EDR/EV, Firewall, IPS/NIPS, VPN, APT, proxy etc.
2. Experience with cloud security requirements & log monitoring
3. Expertise on Cyber Kill Chain, MITRE ATT&CK, or other relevant cybersecurity defense and intelligence frameworks
4. Development experience in Smart/Flex Connectors, Content Analysis & Testing
5. Prior experience of Cyber Threat Hunting & Intelligence
6. Industry-standard certifications such as SOC Analyst (EC Council), CISSP, CEH, or SIEM Platform (Arcsight/Qradar or similar technology).
7. Knowledge of technical writing and documentation and the ability to map processes and procedures

Competencies critical to the role

1. Detail Orientation
2. Teamwork and Collaboration
3. Stakeholder Management
4. Analytical ability

Qualification 

Bachelor’s Degree or B.Tech in Computer Science / Information Technology or in a related discipline

Preferred Industry

BFSI / NBFC /E-commerce/IT & ITES / Telecom

Experience Level

Senior Level